Playing Whack-a-Mole With New Dharma Ransomware Variants
The Dharma ransomware family was initially identified in 2016 and operates as a Ransomware-as-a-Service (RaaS) model.
Incidentally, one version of the ransomware was leaked and whomever gained access altered it to suit their needs.
The malware uses multiple initial access vectors such as exposed Microsoft Remote Desktop Protocol (RDP) servers and phishing with attachments masquerading as legitimate software.
The ransomware encrypts files within the system and launches mshta.exe to display an HTML file containing ransom details.
Featured Resources
blog
How Do You Know? Answers to help the board understand the value of your security program
This is Part 5 of our five-part series on Continuous Threat Exposure Management (CTEM). Boards and business leaders need more
CUSTOMERS
Insurance Leader Strengthens Security to Drive Innovation with Cymulate
This Indian insurance leader relies on Cymulate for automated exposure validation that optimizes security controls, tests the latest threats and
blog
Using Continuous Threat Exposure Management to Enable Business Partnership
This is Part 4 of our five-part series on Continuous Threat Exposure Management (CTEM). Effective cybersecurity is not just about
Subscribe to Our Blog
Subscribe now to get the latest insights, expert tips and updates on threat exposure validation.
Subscribe