Evolution of Ransomware: Multi-Extortion Ransomware Attacks
Summary
Multi-extortion ransomware attacks have evolved to include the threat of public data leaks as a pressure tactic against victims. Penta Security's D.AMO platform aims to mitigate this by keeping exfiltrated files encrypted, rendering them unusable to attackers even if stolen.
IFF Assessment
FOE
The article describes an evolving and more potent threat of ransomware, which negatively impacts defenders.
Defender Context
Defenders need to be aware of the increasing sophistication of ransomware, particularly the multi-extortion tactics that combine encryption with data exfiltration and leak threats. Implementing robust data loss prevention (DLP) and ensuring exfiltrated data is unusable, even if stolen, are crucial mitigation strategies.