Phobos
CISA Warns Phobos Ransomware Groups Attacking Critical Infrastructure
Phobos, a complex ransomware-as-a-service (RaaS) operation that has been around for five years and is includes multiple variants, continues to target a range of critical infrastructure in the United States, including education, ...
Security Boulevard
Response to CISA Advisory (AA24-060A): #StopRansomware: Phobos Ransomware
Francis Guibernau | | #StopRansomware, adversary emulation, CISA Alert, Phobos, Ransomware, ransomware as a service
AttackIQ has released a new assessment template in response to the recently published CISA Advisory (AA24-060A) which disseminates known Tactics, Techniques, and Procedures (TTPs) and Indicators of Compromise (IOCs) associated with the ...
Zebra2014 Broker Shares Ransomware Resources
A newly discovered initial access broker (IAB), dubbed Zebra2104, has been enabling threat actors to share the resources of powerful ransomware groups StrongPity, Phobos and MountLocker and pose even greater danger to ...
Security Boulevard
New Phobos Ransomware Using Same Ransom Note as Dharma
A new strain of ransomware known as “Phobos” is using the same ransom note employed by Dharma to demand payment from its victims. Ransomware incident response provider Coveware found that Phobos’ ransom ...