AKIRA
The Indian Computer Emergency Response Team (CERT-In) issued an advisory reporting new ransomware Akira, which appears to be based on the original version of the Ryuk crypto-locking malware code. The ransomware group claims to have hit at least 63 organizations since its launch – mostly in the US Attack Pattern: The ransomware is designed to encrypt data on infected computers and manipulate filenames by appending the ".akira" extension. Tip for Akira: Keep an eye out for failed backups with ‘error 9132’.537Views3likes0CommentsRhysida
The Rhysida ransomware gang – which is part of Rhysida malware family is a relatively new operation which has yet to accumulate victims at scale although in June 2023 there was a successful attack on one South America country Army. Attack Pattern: Encrypts files and renames those to .rhysida. After encryption is finished, leaves a ransom note titled “CriticalBreachDetected.pdf”.