From the Caribbean coast to the user's device: Cuba Ransomware details the Cuban ransomware group has a long history and was once known as "TropicalScorpius." The group
author:Microplatinum terminals
From the Caribbean Coast to User Devices: A Breakdown of the Cuba Ransomware
The Cuban ransomware group has a long history and was once known as "Tropical Scorpius." The organization primarily targets organizations in the United States, Canada, and Europe, including retailers, financial and logistics services, government agencies, manufacturers, and more. Their attack methods include exploiting software vulnerabilities and social engineering tactics, among others, and encrypting the victim's files for a ransom in exchange for a decryption key. There are currently four modes of extortion in the Cuban organization: single extortion, double extortion, triple extortion and, least commonly, a fourth mode. The organization uses a mix of Xsalsa20 symmetric algorithm and RSA-2048 asymmetric algorithm.
On April 29, the Financial Times published an exclusive interview with Stiglitz, chairman of the Council of Economic Advisers of the Clinton administration and Nobel laureate in economics. The American...