Home SECURITY Virtual Evil Castle Green: LockBit Green threatens business users

Virtual Evil Castle Green: LockBit Green threatens business users

0
Virtual Evil Castle Green: LockBit Green threatens business users

[ad_1]

Virtual Evil Castle Green: LockBit Green threatens business users

The Kaspersky investigation reveals the connection between the malware and the Conti group.

Kaspersky Lab specialists revealed a new version of malware called LockBit Green. Interestingly, this variant uses code from the already inactive Conti group. The report also contains information about phishing campaigns that target business users.

LockBit Green is a modified version of malware that first appeared in February 2023. Interestingly, this malware variant partially borrows code from the Conti group. According to the Threat Attribution Engine (KTAE) tool from Kaspersky Lab, 25% of the LockBit Green code comes from this group. Items migrated include a ransom note, command parameters, and an encryption scheme.

LockBit is one of the most active groups of attackers involved in the distribution of malware. They attack organizations all over the world and, using the codes of other cybercriminal groups such as BlackMatter and DarkSide, simplify their work process.

The Kaspersky Lab report also mentions phishing campaigns that are carried out by forging the domains of attacked organizations in order to gain access to their email. One such campaign, identified in January 2023, used a custom set of SwitchSymb tools to create phishing pages for various purposes.

Kaspersky Lab strongly recommends that organizations use reliable antivirus solutions, keep software up to date, perform regular data backups, and train their employees in cybersecurity principles and fundamentals.

[ad_2]

Source link

www.securitylab.ru

LEAVE A REPLY

Please enter your comment!
Please enter your name here