"HardBit Ransomware Wants Insurance Details to Set the Perfect Price"

The HardBit ransomware threat has been upgraded to version 2.0, and its operators are attempting to negotiate a ransom payment that the victim's insurance would cover. The threat actor tries to persuade the victim that it is in their best interest to provide all insurance information so that they can change their demands and the insurer will cover the costs. According to a report by Varonis, the first version of HardBit was spotted in October 2022, while version 2.0 was found in November 2022. HardBit, unlike most ransomware operations, does not have a data leak site, even though its operators claim to take victim data and threaten to release it if the ransom is not paid. As a ransomware strain, HardBit 2.0 possesses several capabilities to reduce the security of the victim, such as changing the Registry to disable Windows Defender's real-time behavioral monitoring, process scanning, and on-access file protections. Furthermore, the malware terminates 86 processes to make sensitive files available for encryption. This article continues to discuss findings regarding version 2.0 of the HardBit ransomware. 

Bleeping Computer reports "HardBit Ransomware Wants Insurance Details to Set the Perfect Price"