Royal Ransomware Uses Callback Phishing To Carry Out Attacks
The group behind the Royal ransomware family was discovered targeting entities across multiple countries with most infections occurring in the United States, Brazil, and Mexico.
Phishing emails along with social engineering were used to convince victims to install remote access software allowing the threat actor to gain control of the system.
Various malware and open-source tools were used during the attacks including QakBot, Cobalt Strike, PCHunter, PowerTool, GMER, and Process Hacker.
Featured Resources
AI Threat Detection: Supercharging Cyber Defenses with Intelligence & Scale
Security teams face an onslaught of ever-evolving threats, bloated alert queues and sprawling attack surfaces. Manual detection and periodic pen
Automated Exposure Mitigation
Go beyond validation with automated threat mitigation. Test, detect, and block threats daily to optimize prevention and harden defenses.
Achieve NIS2 Compliance with Security Control Validation
The original 2016 Network and Information Systems (NIS) Directive aimed to build cybersecurity capabilities across the European Union (EU), mitigate