In this video demonstration, see how the SentinelOne Singularity XDR Platform protects against RansomHouse ransomware, a multi-pronged extortion threat that emerged in March 2022.
The RansomHouse attackers exfiltrate all enticing data and threaten to post it publicly. The group targets large enterprises and high-value targets through phishing and spear phishing emails. It also uses third-party frameworks such as Vatet Loader, Metasploit, and Cobalt Strike.
RansomHouse operations tend to be smaller and more controlled than some of the bigger ransomware players. The group openly solicits new members on known underground marketplaces, as well as collaborating on the Telegram service.
RansomHouse focuses on exfiltration only, stealing victim data and skipping encryption. This emphasis can make the attacks more stealthy—and can potentially lead to a much longer dwell time since no encryption means fewer alarms are triggered. Victims, as well as journalists and reporters, are directed to RansomHouse’s ‘PR Telegram Channel’ for any questions or support around the group’s campaigns.
The SentinelOne Singularity XDR Platform detects and prevents malicious behaviors and artifacts associated with RansomHouse ransomware.
~Subscribe to our channels:~
Website: [ Ссылка ]
LinkedIn: [ Ссылка ]
Twitter: [ Ссылка ]
Facebook: [ Ссылка ]
Instagram: [ Ссылка ]
Threads: [ Ссылка ]
~~~~~~~~~~~~
SentinelOne is the only cybersecurity solution encompassing AI-powered prevention, detection, response, and hunting across endpoints, containers, cloud workloads, and IoT devices in a single autonomous platform. With SentinelOne, organizations gain full transparency into everything happening across the network at machine speed—to defeat every attack, at every stage of the threat lifecycle. To learn more visit www.sentinelone.com.
#SentinelOne #RansomHouse #Cybersecurity #RansomwareProtection #SingularityXDRPlatform
