SELECTED BY THE TALOS SECURITY INTELLIGENCE AND RESEARCH GROUP
Title: MedusaLocker ransomware continues to remap drives, encrypt victims' files
Description: MedusaLocker is a ransomware family that has been observed being deployed since its discovery in 2019. Since its introduction to the threat landscape, there have been several variants observed. However, most of the functionality remains consistent. The most notable differences are changes to the file extension used for encrypted files and the look and feel of the ransom note that is left on systems following the encryption process.
Snort SIDs: 53662 - 53664
Title: Kwampirs malware goes after health care sector
Description: The FBI recently released a warning to health care organizations warning them to be on the lookout for the Kwampirs malware. The RAT infects systems and then opens a backdoor on the victims' network. Adversaries using Kwampirs have already been successful in infecting health care-related networks across the globe, according to the FBI's report. Attackers are attempting to capitalize on the fear, uncertainty and large amount of work that are coming with the COVID-19 pandemic.
Snort SIDs: 53738 - 53741