Business Continuity Management / Disaster Recovery , Fraud Management & Cybercrime , Governance & Risk Management
FBI and Australian Officials Describe the Threat Prajeet Nair (@prajeetspeaks) • May 11, 2021Attackers are using Avaddon ransomware to target diverse organizations in the U.S., Australia and elsewhere, according to the FBI and the Australian Cyber Security Center.
See Also: Live Webinar | Software Security: Prescriptive vs. Descriptive
The agencies warn that an ongoing campaign is hitting manufacturers, airlines, healthcare organizations and others.
Avaddon ransomware, first promoted on Russian-language hacking forums as a ransomware-as-a-service offering, was subsequently used in cybercriminal campaigns, the ACSC says in its recent alert.
The gang behind Avaddon ransomware recently stole SIM card data and banking information in an attack on Schepisi Communications, a service provider to Australian telecommunications company Telstra (see: Ransomware Hits Australian Telecom Provider Telstra’s Partner)
Attack Analysis
Avaddon is spread via phishing and malicious spam campaigns, which deliver malicious JavaScript files, the ACSC says.
"These are often low in sophistication, containing a threat suggesting the attached file contains a compromising photo of the victim," the Australian agency says. "‘Double e ..
Support the originator by clicking the read the rest link below.
