By James Slaughter and Shunichi Imano | July 06, 2023
On a bi-weekly basis, FortiGuard Labs gathers data on ransomware variants of interest that have been gaining traction within our datasets and the OSINT community. The Ransomware Roundup report aims to provide readers with brief insights into the evolving ransomware landscape and the Fortinet solutions that protect against those variants.
This latest edition of the Ransomware Roundup covers the Rancoz ransomware.
Affected platforms: Microsoft Windows
Impacted parties: Microsoft Windows Users
Impact: Encrypts files on the compromised machine and demands ransom for file decryption
Severity level: High
Rancoz Ransomware
Overview
It's only been a few months since the Rancoz ransomware first came to the public's attention. However, it's important to raise awareness of this ransomware variant, as the most recent victim on their data leak site on TOR dates back just a few weeks to mid-June.
The first recorded Rancoz victim, according to their TOR site, occurred in November of 2022. The Rancoz modus operandi is similar to other groups, which is to encrypt files on compromised machines, steal information, and extort money from victims.
