Trusted Design

CryptXXX: New Ransomware From the Actors Behind Reveton

概要

Proofpoint researchers recently found a previously undocumented ransomware spreading since the end of March through Bedep after infection via the Angler Exploit Kit (EK). Combining our findings with intelligence shared by Frank Ruiz (Fox IT InTELL) lead us to the same conclusion: this project is conducted by the same group that was driving Reveton ransomware operations and is closely tied to Angler/Bedep. Dubbed "CryptXXX", this new ransomware is currently asking a relatively high $500 per computer to unlock encrypted files. Angler is the number one exploit kit by volume, making the potential impact of new ransomware in the hands of experienced actors with access to this vector quite significant.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

• Angler EK delivers Alpha Crypt Ransomware (score: 0.76)
• Analysis of a piece of ransomware in development (CryptoApp) (score: 0.74)
• Locky: New Ransomware Mimics Dridex-Style Distribution (score: 0.72)
• Targeted ransomware campaign (score: 0.72)
• CRYPTOWALL 4 - THE EVOLUTION CONTINUES (score: 0.72)

このPulseに関連する脅威アクター (事実ベース)

このPulseに関連する脅威アクター (推論ベース)

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクター グラフ

---

← Pulse一覧に戻る