THREAT ACTOR: BlackCat
BlackCat extorts money from targeted organizations by stealing sensitive data and threatening to release it publicly, and encrypting systems. But BlackCat goes one stage further and also threatens to launch a distributed denial-of-service (DDoS) attack if its demands are not met.
This technique is known as “triple extortion.”
BlackCat has gained traction since late 2021 by offering payouts to its affiliates of up to 90%.
Incidents Associated with this Threat
- February 3, 2022: Ransomware Attack at Swiss Airport Services Firm
Malware Used by this Threat Actor
No malware identified for this threat actor.