Attackers are encrypting AWS S3 data without using ransomware

A ransomware gang dubbed Codefinger is encrypting data stored in target organizations’ AWS S3 buckets with AWS’s server-side encryption option with customer-provided keys (SSE-C), and asking for money to hand over the key they used. They do not exfiltrate the data beforehand, but mark the encrypted files for deletion within seven days, thus adding more pressure on organizations to pay the ransom. How does the attack unfold? The threat actor leverages targets’ previous compromised (whether … More → The post Attackers are encrypting AWS S3 data without using ransomware appeared first on Help Net Security.
http://news.poseidon-us.com/THL0vX

Attackers are encrypting AWS S3 data without using ransomware

Like this:

Related

More Posts

Atsign NoPorts desktop client simplifies secure remote access

This is the year CISOs unlock AI’s full potential

How AI and ML are transforming digital banking security

Cybersecurity jobs available right now: January 14, 2025

What 2024 taught us about security vulnerabilties

Engineering quantum entanglement at the nanoscale

Trump Cabinet confirmation hearings postponed over vetting delays

Trump Cabinet confirmation hearings postponed over vetting delays

ISC Stormcast For Tuesday, January 14th, 2025 https://isc.sans.edu/podcastdetail/9278, (Mon, Jan 13th)

Share this:

Like this:

Related

More Posts