Microsoft SharePoint servers have now been added to the list of network devices that ransomware gangs are using as an entry point into corporate networks.
SharePoint now joins a list that includes F5 BIG-IP load balancers, Citrix gateways, Microsoft Exchange email servers, and Fortinet, Pulse Secure, and Palo Alto Network VPNs.
A new ransomware activity that was first seen at the end of 2020 is behind the attacks on SharePoint servers.
Because of the group’s use of Wickr encrypted instant messaging accounts as a way for victims to reach out and discuss the ransom charge, security vendors have given it the codenames Hello or WickrMe ransomware.
To Read More: therecord.media