ALPHV hackers use BlackCat malware ransomware in attack on Amazon Ring 

511
SHARE

A ransomware group known as ALPHV is claiming to have breached Amazon Ring, a popular security camera company. The hacker gang has threatened to leak Ring’s data if its demands are not met. 

Amazon Ring denies any breach of its own systems. But the company says that a third-party vendor has been hit with ransomware. This incident has raised Ring’s customer’s concerns about the security and privacy of their personal data.

Who is ALPHV?

ALPHV is a ransomware-as-a-service hacker group, which means that its attacks are human-driven. And is being actively marketed via Russian hacking forums.

ALPHV typically uses a ransomware malware called BlackCat.

The BlackCat ransomware was first found to be used in 2021. It is a “high customization” malware. And allows attackers to manipulate victims with a new model of ransomware every time.

The ransomware exe is written in Rust which allows attackers to have better control. Rust provides better performance and memory safety for the malware.

Just like other Ransomware-as-a-Service the BlackCat operators also recruit affiliates for corporate attacks and encryption.