The FBI in a joint advisory warned that attackers are using the AvosLocker ransomware to target critical infrastructures in the U.S.
“AvosLocker is a Ransomware as a Service (RaaS) affiliate-based group that has targeted victims across multiple critical infrastructure sectors in the United States including, but not limited to, the Financial Services, Critical Manufacturing, and Government Facilities sectors,” the FBI explained.
The joint cybersecurity advisory was published by the FBI in conjunction with the US Treasury Department and the Financial Crimes Enforcement Network (FinCEN).
Other information provided includes indicators of compromise (IOCs) that can be used to detect and block AvosLocker ransomware attacks.
Technical details on the RaaS operation were also provided.
To successfully mitigate the flaw, network defenders carry out certain steps. This includes network segmentation and regular offline backups.
Another vital step includes keeping software up to date, especially Microsoft Exchange Server which is a known attack vector used by AvosLocker affiliates.
For more information, read the original story in BleepingComputer.