Ragnar Locker ransomware gang has broken through the networks of at least 52 U.S. companies, according to the FBI.
The FBI released more information about the gang and their plans to attack in a blitz warning issued Monday.
The organisations concerned are in the fields of production, energy, financial services, government and information technology.
According to the FBI, Ragnar Locker ransomware payloads were first detected in attacks that took place in late December 2019.
To avoid detection, Ragnar Locker operators terminate remote management software on compromised enterprise endpoints.
The FBI shared indicators of compromise (IOCs) that can help organizations detect and block Ragnar Locker ransomware attacks. This includes information about the attack infrastructure, Bitcoin addresses used to collect ransom demands, and email addresses used by the gang’s operators.
Mitigation measures to prevent the attacks were also provided by the FBI. The agency urged organizations to report incidents of compromise to their local FBI field office.
For more information, read the <a href=”https://www.bleepingcomputer.com/news/security/fbi-ransomware-gang-breached-52-us-critical-infrastructure-orgs/” target=”_blank” rel=”noopener”>original story</a> in BleepingComputer.
