Security News > 2022 > March > FBI: Avoslocker ransomware targets US critical infrastructure
The Federal Bureau of Investigation warns of AvosLocker ransomware being used in attacks targeting multiple US critical infrastructure sectors.
"AvosLocker is a Ransomware as a Service affiliate-based group that has targeted victims across multiple critical infrastructure sectors in the United States including, but not limited to, the Financial Services, Critical Manufacturing, and Government Facilities sectors," the FBI said [PDF].
"As a result, AvosLocker indicators of compromise vary between indicators specific to AvosLocker malware and indicators specific to the individual affiliate responsible for the intrusion."
The advisory provides network defenders with indicators of compromise they can use to detect and block AvosLocker ransomware attacks.
You can find more info on AvosLocker ransomware and what you need to do if you get hit by this ransomware in our forum.
Mitigation measures to help network defenders prevent AvosLocker ransomware attacks include network segmentation and regular offline backups, as well as keeping software up to date, especially Microsoft Exchange Server, a known attack vector used by AvosLocker affiliates.
News URL
Related news
- US charges Chinese hackers linked to critical infrastructure breaches (source)
- CISA: Medusa ransomware hit over 300 critical infrastructure orgs (source)
- US seizes domain of Garantex crypto exchange used by ransomware gangs (source)
- Medusa Ransomware Strikes 300+ Targets: FBI & CISA Urge Immediate Action to #StopRansomware (source)
- UAT-5918 Targets Taiwan's Critical Infrastructure Using Web Shells and Open-Source Tools (source)
- US sensor giant Sensata admits ransomware derailed ops (source)
- China reportedly admitted directing cyberattacks on US infrastructure (source)
- FBI: US lost record $16.6 billion to cybercrime in 2024 (source)
- Ransomware scum and other crims bilked victims out of a 'staggering' $16.6B last year, says FBI (source)