The BlackMatter ransomware group has added technology giant Olympus to their victim list. According to a source at Olympus, the company found a ransom note on September 8th that claimed they had been targeted by the BlackMatter Ransomware Group. Olympus immediately started looking into the extent of the attack and halted all file transfers from their clients as a result. The extent of the attack is not yet known. BlackMatter came into light at the end of July 2021, and they claim to be the successor of the Darkside and REvil groups. The group is recruiting other cyber-criminals with access to networks of large enterprises that have a minimum revenue of 100 million or more per year. The group uses underground forums to recruit others and pays them a percentage of the ransom if one is paid. Like other ransomware operators, the group utilizes a victim leak site to post the stolen data of victims that do not pay.
Intro The Binary Defense threat hunting team are experts on today’s threat actor groups. In