The Rhysida attackers exploit vulnerabilities like the lack of Multi-Factor Authentication (MFA) and the Zerologon vulnerability to gain initial access and maintain a presence within victims' networks.

US Agencies Warn of Opportunistic Rhysida Ransomware Attacks

The FBI and CISA have issued a warning about the Rhysida ransomware gang, which has been targeting organizations in various sectors. The gang is known for opportunistic attacks and has already breached the Chilean Army and healthcare organizations. They use a ransomware-as-a-service model and often gain initial access to networks through stolen credentials and exploiting vulnerabilities. Affiliates of the Vice Society ransomware group have also started using Rhysida ransomware. Defenders are advised to apply mitigations such as patching vulnerabilities, enabling multi-factor authentication, and using network segmentation to prevent these attacks.

Back to Home


  • No comments yet.