The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) have issued alerts to warn organizations of the growing threat the king ransomware poses.
Royal ransomware has been used in attacks since September 2022, targeting US and international organizations in multiple industries, including critical infrastructure, communications, education, healthcare and public health (HPH), and manufacturing. Royal ransomware, which likely evolved from a variant that relied on the Zeon bootloader, uses its own program to encrypt files, disable security protections on infected systems, and exfiltrate large amounts of data to engage in double extortion.
For initial access, Royal ransomware operators rely on phishing, remote desktop protocol (RDP), exploiting vulnerabilities in public-facing applications and initial access brokers, the FBI and CISA warn in their advisory.
Read more: Organizations Warned of Royal Ransomware Attacks
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.