New: Threat Exposure Validation Impact Report 2025
Learn More
Join our Summer Webinar Series on Threat Exposure Validation
Register Now
Come meet us at Black Hat USA 2025 | Booth 1640
Book a Meeting

CISA Alert (AA22-321A) - Hive Ransomware Analysis

November 20, 2022

Threat actors are using Hive ransomware variants to target the government, communication, critical manufacturing, information technology, and healthcare sectors. Initial access is carried out with phishing emails or by exploiting flaws in Internet facing applications. The adversaries exfiltrate sensitive information prior to encrypting files and threatens to release the stolen data if the ransom is not paid.