INC Ransom
Threat Actor
INC Ransom came about in August this year and targeted organizations spanning various sectors such as healthcare, education, and government in double extortion attacks.After gaining access, they move laterally through the network, first harvesting and downloading sensitive files for ransom leverage and then deploying ransomware payloads to encrypt compromised systems.
Incidents Associated with this Threat
- October 25, 2023: Ransomware Attack at Yamaha Subsidiary
Malware Used by this Threat Actor
No malware identified for this threat actor.