/shutterstock_700125367.jpeg?width=1200&name=shutterstock_700125367.jpeg)
I apologize to all of you Led Zepplinists in the audience, but I couldn't help myself. A fairly recent form of ransomware, called Zeppelin (duh) has reared its ugly head once again.
The software retails for about $2,300 on the Dark Web and gives customers decide how they use the software. This is atypical in the Ransomware-as-a-Service (RaaS) industry. Typically a RaaS provider and their partners split the ransom.
The Zeppelin developers are also known for favoring their regular customers, offering unique and favorable terms to those who've repeatedly bought from them.
Zeppelin can ultimately be traced back to the Buran or VegaLocker family of ransomware. The family is programed in the Delphi language, making it more difficult to reverse-engineer.
In the past, bad actors had previously relied on malvertising campaigns to spread VegaLocker, but in this case, Zeppelin uses more traditional methods, like exploiting VPN vulnerabilities and phishing.
Helpful Articles:
Phishing
https://www.security7.net/guide/social-engineering/what-is-a-phishing-attack
https://www.security7.net/news/what-is-phishing
VPN
https://www.security7.net/news/an-ode-to-vpns-why-traditional-solutions-stink-three-replacements
Like our blog? Subscribe using the CTA in the upper right-hand corner of this page. Feel like sharing your thoughts with us? Use the comment section below.
Carl Keyser : Jun 13, 2022 12:03:06 PM
It's no secret that passwords are a pain in the butt. They can be difficult to remember, they're a huge target for cybercriminals, etc.
Carl Keyser : Jun 6, 2022 2:18:48 PM
A newly discovered exploit is using a flaw in Microsoft's Support Diagnostic Tool (MSDT) to remotely take over end-points via compromised Word...
Carl Keyser : May 26, 2022 8:00:00 AM
It used to take a good deal of coding knowledge to build a website or an application. That's not the case anymore. You can build a website in...