Akira Ransomware Mutates to Target Linux Systems, Adds TTPs
1 min read
Sep 27, 2023
The newly emerged ransomware actively targets both Windows and Linux systems with a double-extortion approach.
Arika ransomware has continued to evolve since emerging as a threat in March, expanding its reach from initially targeting Windows systems to include Linux servers and employing a growing array of tactics, techniques, and procedures (TTPs).
An in-depth report on Akira from LogPoint breaks down the "highly sophisticated" ransomware, which encrypts victim files, deletes shadow copies, and demands ransom payment for data recovery.
The infection chain actively targets Cisco ASA VPNs lacking multifactor authentication to exploit the CVE-2023-20269 vulnerability as an entry point.
As of early September, the group had successfully hit 110 victims, focusing on targets in the US and the UK.
Related Articles
1 - 0 min read
How to Keep Your Linux System Safe from Kernel Bugs
1 - 0 min read
Spectre V2: A New Threat to Linux Systems
1 - 0 min read
Hacked VMs Reveal New Attack Risks
1 - 0 min read
Multiple Chromium DoS, Info Disclosure Vulns Fixed [Updated]
