Security News > 2020 > June > Tens of U.S. Businesses Targeted With WastedLocker Ransomware
At least 31 organizations in the United States have been targeted with the recently detailed WastedLocker ransomware, Symantec reports.
Last week, NCC Group security researchers revealed that the WastedLocker ransomware is being deployed against carefully selected targets and that the SocGholish fake update framework and a custom Cobalt Strike loader are used for malware dissemination.
Shortly after NCC Group's report, Symantec published their own take on WastedLocker, revealing that at least 31 organizations in the United States have been targeted with the malware.
The security firm uncovered the attacks after hackers had breached the networks of targeted organizations and were setting up for the deployment of ransomware.
"Once the attackers gain access to the victim's network, they use Cobalt Strike commodity malware in tandem with a number of living-off-the-land tools to steal credentials, escalate privileges, and move across the network in order to deploy the WastedLocker ransomware on multiple computers," Symantec explains.