Trisec is a ransomware group that emerged in February 2024, notably distinguishing itself through an open affiliation with Tunisia and a stated motivation encompassing both financial gain and "glory to Tunisia." The group recruits exclusively Tunisian blackhats and operates with a unique blend of financially motivated and potentially state-sponsored activities, indicating a cyber mercenary model. They leverage double extortion tactics, exfiltrating data before encrypting systems and threatening to leak sensitive information if ransoms are not paid. Unlike some ransomware groups, Trisec has been observed negotiating ransom amounts, sometimes inviting victims to offer a price rather than adhering to a fixed demand. They have been known to use aliases such as Tri-Security Vision and Trisec Vision.

Sectores atacados

URLs nuevas detectadas en IntelTracker