Ransomware Crew Abuses AWS Native Encryption, Sets Data-Destruct Timer for 7 Days
A new ransomware group called Codefinger targets AWS S3 buckets by exploiting compromised or publicly exposed AWS keys to encrypt victims’ data using AWS’s own SSE-C encryption, rendering it inaccessible without the attacker-generated AES-256 keys. While other security researchers have documented techniques for encr … ⌘ Read more