As predicted, it only took a few days into the new year for a new ransomware group to emerge. First identified by MalwareHunterTeam, Night Sky ransomware has already published the information of two victims. BleepingComputer reportedly observed a sample of the Night Sky ransomware and said it is customized to contain a personalized ransom note and hardcoded login credentials to access the victim’s negotiation page. Instead of using a Tor site to communicate with victims, Night Sky uses email addresses and a clear web website running Rocket.Chat. Much like other ransomware groups, Night Sky uses the double-extortion technique, threatening to leak stolen data if a ransom is not paid.
12 Essentials for a Successful SOC Partnership
As cyber threats continue to impact businesses of all sizes, the need for round-the-clock security