Ransomware – operators rely on insider aquise
15. August 2021Ransomware – operators rely on insider aquise
New York, 8/15/2021
Ransomware operators are recruiting insiders to penetrate corporate networks. This eliminates the middleman for many ransomware-as-a-service programs.
The group wants to provide the accomplices with viruses that they have to install on their work computers. The ransomware group involved, LockBit, promises insiders millions for access to RDP, VPN and corporate email credentials that would give them network access.
This tactic is not new. A year ago, a Russian national tried to recruit a Tesla employee to infiltrate malware into Tesla’s Gigafactory network in Nevada, but was foiled and arrested by the FBI.