Ransomware Spotlight

BlackByte

July 05, 2022

BlackByte is a ransomware group that has been building a name for itself since 2021. Like its contemporaries, it has gone after critical infrastructure for a higher chance of a getting a payout. What techniques sets it apart?

Ransomware Spotlight provides threat intelligence on the most notorious ransomware families used in threat actor campaigns. Threat research carefully collated and examined by Trend Micro experts aims to aid incident responders and security teams to effectively spot risks and defend enterprises against ransomware attacks.

Ransomware Spotlight: RansomEXX
May 17, 2022
RansomEXX is a ransomware variant that gained notoriety after a spate of attacks in 2020 and continues to be active today. With its targeted nature and history for choosing high-profile victims, we shine our spotlight on RansomEXX to reveal its tactics, techniques, and procedures.
Read more
Ransomware Spotlight: AvosLocker
April 04, 2022
AvosLocker is a relatively new ransomware variant that sports the staples of modern ransomware, namely a layered extortion scheme that begins with stolen data. We shed light on this emerging ransomware family and its key techniques.
Read more
Ransomware Spotlight: Hive
March 18, 2022
Hive ransomware is one of the new ransomware families in 2021 that poses significant challenges to enterprises worldwide. We take an in-depth look at the ransomware group’s operations and discuss how organizations can bolster their defenses against it.
Read more
Ransomware Spotlight: Clop
February 22, 2022
We take a closer look at the operations of Clop, a prolific ransomware family that has gained notoriety for its high-profile attacks. We review this ransomware group’s constantly changing schemes and discuss how companies can shore up defenses against this threat.
Read more
Ransomware Spotlight: LockBit
February 08, 2022
The LockBit intrusion set, tracked by Trend Micro as Water Selkie, has one of the most active ransomware operations today. With LockBit’s strong malware capabilities and affiliate program, organizations should keep abreast of its machinations to effectively spot risks and defend against attacks.
Read more
Ransomware Spotlight: REvil
December 20, 2021
Now that the reign of REvil has come to an end, it's time to regroup and strategize. What can organizations learn from REvil’s tactics? We review the rise, downfall, and future of its operations using insights into the group's arsenal and inner inner workings.
Read more
Ransomware Spotlight: Conti
December 01, 2021
Assumed to be the successor of the Ryuk ransomware, Conti is currently one of the most notorious active ransomware families used in high-profile attacks. Know all about this ransomware family and protect your company against this threat.
Read more

BlackByte

Ransomware Spotlight: RansomEXX

Ransomware Spotlight: AvosLocker

Ransomware Spotlight: Hive

Ransomware Spotlight: Clop

Ransomware Spotlight: LockBit

Ransomware Spotlight: REvil

Ransomware Spotlight: Conti