Security News > 2025 > January > Ransomware crew abuses AWS native encryption, sets data-destruct timer for 7 days
2025-01-13 14:00
'Codefinger' crims on the hunt for compromised keys A new ransomware crew dubbed Codefinger targets AWS S3 buckets and uses the cloud giant's own server-side encryption with customer provided keys (SSE-C) to lock up victims' data before demanding a ransom payment for the symmetric AES-256 keys required to decrypt it.…