Buhti ransomware gang switches tactics, utilizes leaked LockBit and Babuk code

Buhti ransomware targetting Linux and Windows customers is a new kind of ransomware.

Previous ransomware families that targeted Linux include those from LockBit and Babuk, as well as some from the Bl00dy

Ransomware Gang.

Buhti does not have a custom payload and can be used by anyone who wants to build their own ransomware family on top of one of these two existing ransomware families.

Major ransomware gangs are borrowing capabilities from either leaked code or code purchased from other cybercriminals, which may improve the functionality of their own malware, Kaspersky said in its ransomware trends report for 2023.The threat actors behind the Buhtion ransomware have eschewed the custom payload for leaked Lockbit and Babuki ransomware families designed to attack Linux systems.

These two ransomware families were first published online in September 2021 and September 2022, spawning many imitators.

#shorts #techshorts #technews #tech #technology #own ransomware #Babuk ransomware source code #Blacktail

👋 Feeling the vibes?

Keep the good energy going by checking out my Amazon affiliate link for some cool finds! 🛍️

If not, consider contributing to my caffeine supply at Buy Me a Coffee ☕️.

Your clicks = cosmic support for more awesome content! 🚀🌈