Cyberattack?
The US Cybersecurity and Infrastructure Security Agency (CISA) and the US Federal Bureau of Investigation (FBI) have issued a warning. The two agencies said that cybercriminals with the name 'Ghost' have successfully penetrated victims from various industrial sectors in 70 countries.
Some of the industries in question are critical infrastructure organizations, health, government, education, technology, manufacturing, and small and medium businesses (SMEs).
Ghost ransomware operators typically rotate executable malware, change the file extensions of encrypted files, change the contents of ransom notes, and use multiple email addresses for ransom communications, which often causes the group's attribution to fluctuate over time.
