Security Experts from Blackberry threat Intelligence and KPMG discovered a new strain of multi-platform ransomware known as Tycoon ransomware.

According to the report, Small to medium sized companies, education institutions and software industries have been highly targeted with its attack.

The ransomware according to the report is compiled into Java image file (JIMAGE), a file format used to store custom JRE images which is designed to be used by the JVM at runtime. Experts found out that some unseen techniques has been used to achieve persistence and execute a backdoor by the attackers. Threat actors used IFEO injection (Image File Execution Options) to achieve persistence.

You can read more about the ransomware here:

JBS, the world’s meat producer shelled out $11 million dollars in ransom to hackers.
What happened? JBS USA [part of J.B.S S.A group] confirmed that the …
CoWin Website hacked and 150 million registered user database stolen.
What Happened? A recent claim has been made on the dark web …

By Siddhant Pathak

Cyber security architect, 7+ years experience in cyber security industry, Tech savy, Nature lover, Bullet 350 rider

Have some thoughts? why not share with us here.