An ongoing Avaddon ransomware campaign is targeting organizations from several sectors based in the U.S. and worldwide. According to the FBI, the ransomware associates are breaching the networks of healthcare, manufacturing, and other private sector organizations worldwide.
What has happened?
Apart from the FBI, the ACSC disclosed that the ransomware gang's associates are targeting entities from multiple sectors.
- While the FBI only mentioned ongoing attacks, the ACSC provided a list of countries still under attack including China, the U.S., the U.K, Brazil, Germany, the UAE, France, Spain, and India, among others.
- According to the ACSC, the Avaddon ransomware gang is threatening victim organizations with DDoS attacks to put pressure on them to pay the ransom, along with encrypting their system and leaking stolen data.
- However, the FBI found no evidence of DDoS attacks following the attacks.
- At present, only the SunCrypt and RagnarLocker ransomware are using the DDoS attack tactic to pressurize their victims.
More Avaddon incidents
- A few weeks ago, Capital Medical Center located in Washington was attacked by Avaddon.
- Last month, the threat actor breached the Nationalist Party of Malta’s network.
Conclusion
The Avaddon ransomware gang is very much active and adopting double extortion with additional DDoS threats to extort from victims. Looking at its attempts, more attacks could be expected from this ransomware gang in the coming days.
Publisher
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_59564641.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_92452177.jpg)
