A new variant of the MegaCortex Ransomware has been found that not only encrypts a victim’s files but now changes the logged-in user’s password and threatens to publish the victim’s files if the ransom is not paid. For those unfamiliar with MegaCortex, it is targeted ransomware that is installed through network access provided by trojans such as Emotet. Once the MegaCortex actors gain access, they then push the ransomware out to machines on the network via an active directory controller or post-exploitation kits.
Watch the Video
How does Binary Defense help protect your organization? With best in breed cybersecurity tactics, techniques, and services, we make sure that your environment is secure against the most advanced attacks.