A naukri.com initiative
Securityaffairs
1d
274
Image Credit: Securityaffairs
Qilin ransomware gang now offers a “Call Lawyer” feature to pressure victims
- The Qilin ransomware group now offers a "Call Lawyer" feature to provide legal support to affiliates and pressure victims into paying, as reported by cybersecurity firm Cybereason.
- Qilin, active since at least August 2022 and gaining attention in June 2024 for attacking a UK governmental service provider, uses double extortion tactics and takes a percentage of ransom payments.
- Affiliates are ordered not to target systems in CIS countries like other ransomware operations.
- Qilin is positioning itself as a full-service cybercrime platform, offering advanced tools, legal support, spam services, and large data storage.
- The "Call Lawyer" feature increases pressure on victims during ransom negotiations by offering legal consultations and introducing legal risks.
- By introducing network spreading and a DDoS option, Qilin demonstrates sophistication and adaptability in various cyberattack scenarios.
- A translation of the ransomware group's text explains how the "Call Lawyer" feature works to increase ransom amounts and apply legal pressure on companies.
- Qualys also highlights the strong operational model and legal support provided by Qilin to clients for successful ransomware payouts.
- The Qilin ransomware group is intensifying its activity, as shown by a heatmap reporting host compromises.
- Organizations are advised to adopt proactive measures to defend against sophisticated threats like Qilin ransomware, as per Qualys' recommendations.
- Qilin ransomware group's strategy includes legal support, incentives, and technology for successful ransom payouts.
- Cybereason's report emphasizes Qilin's emergence as a major ransomware player, offering more than just malware and aiming to lead the next wave of ransomware-as-a-service operations.
Read Full Article
16 Likes
For uninterrupted reading, download the app