LAPSUS$ is dead, long live HexaLocker?

The LAPSUS$ threat group has been known since 2021 for spear phishing, data theft, and extortion against large companies (e.g., Microsoft, Nvidia, Uber). Although evidence of destruction methods was reported, there was no known use of ransomware. In June 2024, LAPSUS$ announced its closure. However, two months later, a new ransomware called HexaLocker was advertised on Telegram channels. Its "only real" admin and probable developer is ZZART3XX, one of the LAPSUS$ administrators. This article will dissect the HexaLocker ransomware samp...

原始链接: https://www.synacktiv.com/en/publications/lapsus-is-dead-long-live-hexalocker
侵权请联系站方: [email protected]

相关推荐

换一批