Check Point has uncovered many ties between the group and the infamous Vice Society, but it also reveals a grim truth – the TTPs of prolific ransomware actors remain largely unchanged.
According to the company, both Rhysida ransomware and Vice Society have disproportionately targeted the education and healthcare sectors.
The company also notes that the threat posed by these two organizations is similar in that both infecting victims with ransomware designed specifically for the Education and Healthcare Sectors.
Tactical similarities have been unearthed between the double extorture ransomware group known as RhysIDA and Vice society, including in their targeting of education and health services.
Both companies use remote desktop protocol (RDP) and remote PowerShell sessions to move their ransomware payloads, while the ransomware itself is deployed using PsExec.
๐ Feeling the vibes?
Keep the good energy going by checking out my Amazon affiliate link for some cool finds! ๐๏ธ
If not, consider contributing to my caffeine supply at Buy Me a Coffee โ๏ธ.
Your clicks = cosmic support for more awesome content! ๐๐
Leave a Reply