"Researchers Discover New Ransomware Gang 'Muliaka' Attacking Russian Businesses"

A ransomware gang, dubbed "Muliaka" by the Moscow-based cybersecurity company F.A.C.C.T., has been targeting Russian businesses with malware developed from the Conti hacking group's leaked source code. The gang, also known as Muddy Water in English, has left few traces of its attacks, but it has likely been active since at least December 2023. In a January incident, the group attacked an unnamed Russian company by encrypting its Windows systems and VMware ESXi virtual infrastructure. The attackers accessed the victim's Information Technology (IT) infrastructure remotely via the company's Virtual Private Network (VPN) service. They disguised their ransomware as popular corporate antivirus software already installed on the company's computers. Muliaka malware terminates processes and certain system services on the victim's computer before encrypting files. This article continues to discuss findings regarding the Muliaka ransomware gang.

The Record reports "Researchers Discover New Ransomware Gang 'Muliaka' Attacking Russian Businesses"

Submitted by grigby1