Tengu Ransomware: Attack Chain From Initial Access to Encryption (opens in new tab)

Introduction to Malware Binary Triage (IMBT) Course Looking to level up your skills? Get 10% off using coupon code: MWNEWS10 for any flavor. Note: Affiliate link – your enrollment helps support this platform at no extra cost to you. Overview Tengu is a Ransomware-as-a-Service (RaaS) operation that relies on a double-extortion model. The threat actors steal sensitive information prior to encryption and use a Tor browser-based portal to negotiate with victims. Rather than deploying custom malwa...