"Embargo Ransomware Analysis Exposes Developing Toolkit of New Group"

The "Embargo" ransomware group is a new Ransomware-as-a-Service (RaaS) gang that uses a custom Rust-based toolkit. It includes a variant that disables security processes through the abuse of Windows Safe Mode. The group, which first emerged publicly in May 2024, is suspected to have been behind attacks on the American Radio Relay League and South Carolina police department. This article continues to discuss findings from ESET's latest analysis of the Embargo ransomware group.

SC Media reports "Embargo Ransomware Analysis Exposes Developing Toolkit of New Group"