Ransomware as a service operation first seen in 2020 with alleged ties to ThunderCrypt
Engages in Big Game Hunting and have been seen planting backdoors which are re-used
months later. One of their traits is the exploitation of CVE-2022-29499, a vulnerability found
on MiTel MiVoice Connect, to achieve RCE.
A decrypter was available later in 2021 for certain strains of the ransomware.
Most of their victims were private corporations, but also private clinics were seen listed and
No Data Found
© ALL RIGHTS RESERVED TO DarkFeed 2023