RansomExx attacks The Ministry of Defense of Peru
Date:
March 25, 2024
Overview
Title
RansomExx attacks The Ministry of Defense of Peru
Victim
The Ministry of Defense of Peru
Attacker
RansomEXX
Location
Size of Attack
Unknown/TBD
First Reported
March 25, 2024
Last Updated
October 31, 2022
The Ministry of Defense of Peru has been attacked by RansomExx ransomware gang. The ransomware group published 763.8 GB of data. The Ministry of Defense of Peru is the government ministry responsible for safeguarding national security on land, sea, and air. It exercises command over the Peruvian Armed Forces, composed of the Army, the Navy, and the Air Force. RansomExx is one of the newest ransomware groups that is carrying out attacks across the globe. The ransomware gang has been in operation since 2018 but came into prominence in 2020 after infecting a variety of high-profile organizations such as Gigabyte and Starhub. RansomExx is used as a part of multi-stage ‘human-operated’ attacks targeting various entities. It is delivered as a secondary payload after an initial compromise of the targeted network. It is capable of disabling various security products for smooth execution on the infected machines and has been found to infect mainly Windows systems, but current studies show this malware infects Linux systems as well by sharing similarities with its predecessor. The malware is usually delivered as a secondary in-memory payload without ever touching the disk. This makes it harder to detect.
This attack's description was not found, while we work on the detailed account of this attack we invite you to browse through other recent Rasomware Attacks in the table below.
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.