KillSec Ransomware Group Attacks Romanian Police Force

KillSec ransomware group has attacked the Romanian Police Force, exfiltrating 200,000 records. A ransom of € 1,500 ($ 1,600) was paid. The Romanian Police Force is the national police force and main civil law enforcement agency in Romania. It is subordinated to the Ministry of Internal Affairs, and a General Inspector leads it with the rank of Secretary of State.

KillSec: A New Threat on the Horizon

KillSec is a new ransomware group that has carried out its first attacks. The gang describes itself as a "cyber security team" and has targeted many organizations. The group's brazenness is clear in their public announcements and communications. They went on Telegram on October 25, 2023, to advertise their ransomware operations, revealing their intent to disrupt and profit from their illegal activities.

High-Profile Attacks and Sophisticated Operations

Subsequent attacks on high-profile organizations such as the Romanian Police and Paschim Bengal Gramin Bank underscore their audacity and ability. KillSec operates with a level of sophistication that is hard to believe, given that the group is in its infancy. Making use of a TOR domain and a nginx server ensures anonymity and efficiency in its operations. Moreover, it demands payment in XMR (Monero), a privacy-focused cryptocurrency, which adds another layer of complexity to the task of tracking and apprehending the malefactors.