"RTM Locker: Emerging Cybercrime Group Targeting Businesses with Ransomware"

Read The Manual (RTM) Locker is a developing cybercriminal group that operates as a private Ransomware-as-a-Service (RaaS) provider and conducts opportunistic attacks to generate illicit profit. According to a report by the cybersecurity company Trellix, the RTM Locker gang uses affiliates to extort victims, all of whom must adhere to the gang's strict rules. The group's business-like structure, in which members are required to remain active or notify the gang of their departure, demonstrates its organizational maturity, as has been observed with other groups, such as Conti. RTM Locker, first identified by ESET in February 2017 as a banking malware targeting Russian companies via drive-by downloads, spam, and phishing emails, started in 2015. Since then, the group's attack chains have evolved to deliver ransomware to compromised hosts. This article continues to discuss the  RTM Locker cybercrime group. 

THN reports "RTM Locker: Emerging Cybercrime Group Targeting Businesses with Ransomware"