FBI FLASH - Diavol Ransomware
Other | 01/19/2022The FBI first learned of Diavol ransomware in October 2021. Diavol is associated with developers from the Trickbot Group, who are responsible for the Trickbot Banking Trojan. Diavol encrypts files solely using an RSA encryption key, and its code is capable of prioritizing file types to encrypt based on a pre-configured list of extensions defined by the attacker. While ransom demands have ranged from $10,000 to $500,000, Diavol actors have been willing to engage victims in ransom negotiations and accept lower payments. The FBI has not yet observed Diavol leak victim data, despite ransom notes including threats to leak stolen information.
To read more, please log in
This site is operated by NetDiligence®. Links found within this site may open a new browser window and take you outside the eRiskHub to another website, the contents of which are maintained by third parties over whom NetDiligence has no control. We provide links to these external sites for your convenience and awareness. We accept no responsibility for the content of linked sites. Upon request of the content source, we will remove links.
© =date('Y');?> NetDiligence®, A Company of Network Standard Corporation