NoEscape ransomware emerged in May 2023 as a Ransomware-as-a-Service (RaaS) operation, which functions by providing malicious code and infrastructure to affiliates for a share of ransom payments. It is widely understood to be a rebrand of the defunct Avaddon ransomware group, which ceased operations in 2021. Despite this, NoEscape's operators assert that their malware and infrastructure were built from scratch. The group is assessed with high confidence to be of Eastern European or Russian origin, evidenced by its policy of not targeting Commonwealth of Independent States (CIS) countries and providing free decryption keys to victims in these regions. NoEscape's primary motivation is financial gain, and it distinguishes itself by employing a triple-extortion model that includes encrypting data, exfiltrating sensitive information, and threatening Distributed Denial of Service (DDoS) attacks, in addition to listing victims on a dedicated leak site. The service offers affiliates extensive

Sectores atacados

URLs nuevas detectadas en IntelTracker