December 19, 2023

#StopRansomware: ALPHV Blackcat

December 19, 2023

What we know so far

The joint Cybersecurity Advisory (CSA) by the FBI and CISA details the threats posed by the ALPHV BlackCat ransomware. The advisory updates on the BlackCat/ALPHV Ransomware Indicators of Compromise highlight the new Sphynx ransomware update, which targets Windows, Linux, and VMWare instances. The advisory notes over 1,000 global victims, with a majority in the U.S., and underscores the importance of implementing recommended mitigations to reduce the impact of such ransomware and data extortion incidents. It also outlines the sophisticated techniques used by ALPHV BlackCat affiliates for gaining access, data exfiltration, and evasion and their practice of offering cyber remediation advice post-ransom payment.

Arrow Right

Schedule a test

Subscribe to advisory alerts

Be immediately notified of new advisories and associated security tests

More advisories