"New Ransomware-as-a-Service 'Eldorado' Targets Windows and Linux Systems"

"Eldorado," a new Ransomware-as-a-Service (RaaS), encrypts Windows and Linux files with locker variants. According to Group-IB, Eldorado first appeared on March 16, 2024, when an advertisement for the affiliate program was posted on the ransomware forum RAMP. Researchers said the Eldorado ransomware uses Golang for cross-platform capabilities, Chacha20 for file encryption, and RSA-OAEP for key encryption. This article continues to discuss findings regarding the Eldorado RaaS.

THN reports "New Ransomware-as-a-Service 'Eldorado' Targets Windows and Linux Systems"

Submitted by grigby1

Submitted by Gregory Rigby on