Threat Assessment: Repellent Scorpius, Distributors of Cicada3301 Ransomware
Essential information
- Published
- 11/09/2024 08:08
- Modified
- 11/09/2024 08:24
- Tags
- 2024-09-11 cicada3301 cybercrime encryption exfiltration extortion ransomware
- Related entities
- 2 vulnerabilities (cve), 8 observables, 1 intrusion sets (apt), 8 techniques (mitre), 1 malware
Description
Repellent Scorpius is a new ransomware-as-a-service group distributing Cicada3301 ransomware. It emerged in May 2024 and employs double extortion tactics involving data theft. The report covers a technical analysis of the Cicada3301 ransomware, the group's tactics, connections to historical incidents, and an updated encryptor variant. It anticipates increased Cicada3301 activity.