The Entropy ransomware family first emerged in the first quarter of 2022, often deployed in conjunction with Dridex infections. It is attributed to a cybercriminal group known for leveraging custom-developed ransomware variants with robust encryption methods. The group predominantly focuses on high-value targets across various industries, consistently demanding substantial ransoms. A defining characteristic of the associated operations is the employment of double extortion tactics, where stolen data is threatened to be released in addition to file encryption to maximize leverage. This threat actor is also notable for employing meticulous planning and execution in its campaigns.

URLs nuevas detectadas en IntelTracker