Skip to main content

CosmicBeetle Deploys Custom ScRansom Ransomware, Partnering with RansomHub


Jasper_The_Rasper
Moderator
Forum|alt.badge.img+54

September 10, 2024 By Ravie Lakshmanan

 

ScRansom Ransomware

The threat actor known as CosmicBeetle has debuted a new custom ransomware strain called ScRansom in attacks targeting small- and medium-sized businesses (SMBs) in Europe, Asia, Africa, and South America, while also likely working as an affiliate for RansomHub.

"CosmicBeetle replaced its previously deployed ransomware, Scarab, with ScRansom, which is continually improved," ESET researcher Jakub Souček said in a new analysis published today. "While not being top notch, the threat actor is able to compromise interesting targets."

Targets of ScRansom attacks span manufacturing, pharmaceuticals, legal, education, healthcare, technology, hospitality, leisure, financial services, and regional government sectors.

CosmicBeetle is best known for a malicious toolset called Spacecolon that was previously identified as used for delivering the Scarab ransomware across victim organizations globally.

 

>>Full Article<<

0 replies

Be the first to reply!

Reply