"Everest Cybercriminals Offer Corporate Insiders Cold, Hard Cash for Remote Access"
In what researchers believe is a significant transition, the Everest ransomware group is intensifying its efforts to purchase access to corporate networks from employees. Everest noted on its dark web victim blog that those who help in its initial intrusion will receive a "good percentage" of the profits from successful attacks. In addition, the group pledged to provide collaborators with "full transparency" regarding each operation's nature and confidentiality regarding their role in the attack. Everest is particularly interested in gaining access to organizations based in the US, Canada, and Europe, and would welcome remote access via various methods, such as TeamViewer, AnyDesk, and RDP. The language used on cybercrime forums suggests that the group is Russian, but English has also been observed occasionally. This article continues to discuss recent findings regarding the Everest ransomware group.
Submitted by grigby1