Cisco TalosMay 15, 2023
A new #ransomware group called the RA Group is using suspected leaked #Babuk source code to target organizations in the U.S. and South Korea https://blog.talosintelligence.com/ra-group-ransomware/
Newly identified RA Group compromises companies in U.S. and South Korea with leaked Babuk source code

Cisco Talos recently discovered a new ransomware actor called RA Group that has been operating since at least April 22, 2023.

Cisco Talos Blog
Show threadCisco Talos
Like other ransomware groups, #RAGroup uses double extortion tactics and a leak site. More on this attacker here https://blog.talosintelligence.com/ra-group-ransomware/
Newly identified RA Group compromises companies in U.S. and South Korea with leaked Babuk source code

Cisco Talos recently discovered a new ransomware actor called RA Group that has been operating since at least April 22, 2023.

Cisco Talos Blog
May 15, 2023 at 6:33pmWeb