It has been reported that a gang of malicious attackers used the Windows NetWalker ransomware to infiltrate attack on the infrastructure of Forsee Power, a company that designs and manufactures smart lithium-ion battery systems for electro-mobility markets. The cybersecurity experts provide an insight into the tactics used in this ransomware.
The tactics used in this ransomware attack seems to be consistent with what we’ve seen in the last months. The current trend in ransomware operations consists of compromising a target network and once a valuable asset is reached, the exfiltration phase takes place. A ransom is then demanded, with the threat that exfiltrated data will be leaked to the public. Organisations should carefully evaluate their security posture with this specific threat in mind and consider segmenting corporate data according to its strategic importance. Too often we’ve seen attackers walking away organisations’ contracts, payroll information, and other intellectual property that wall all stored on a single file server.