Ransomware has been a growing concern for organizations worldwide, with various strains emerging over the years. One of the newer threats in the world of ransomware is the Egregor strain, which has gained notoriety for its sophisticated codebase and double extortion tactics. Egregor follows the trend of encrypting data and threatening to leak sensitive information if the ransom is not paid, making it a significant threat to organizations across 19 different industries globally.
The rise of Egregor coincided with the shutdown of the Maze ransomware group, with affiliates of the Maze group transitioning to Egregor. This ransomware variant is associated with the Qakbot malware and has victimized at least 71 organizations as of late November. However, Egregor’s reign of terror was short-lived as the FBI and Ukrainian authorities managed to take down the operation in early 2021, putting an end to its malicious activities.
Another significant ransomware threat that has shaken the cybersecurity landscape is the Grief ransomware, also known as “Pay or Grief.” This ransomware, considered the successor of DoppelPaymer, made its debut in May 2021 and quickly made headlines for its double extortion tactics. Grief operates as a ransomware-as-a-service, working with affiliates to compromise organizations and demand ransom payments in exchange for decryption keys.
The group behind Grief, believed to be Evil Corp, has targeted a wide range of industries, including manufacturers, pharmacies, food services, hospitality providers, educational institutions, municipalities, and even government districts. The group has amassed over $11 million in ransom payments, highlighting the devastating impact of their operations on victims.
As the world grapples with the evolving threat landscape of ransomware, it is crucial for organizations to remain vigilant and proactive in implementing robust cybersecurity measures to protect their data and systems from falling victim to these insidious attacks. With the FBI, cybersecurity experts, and law enforcement agencies actively working to combat these threats, there is hope that the tide may turn against ransomware operators, bringing justice to their victims and safeguarding against future attacks.