Cybersecurity researchers have unveiled details about a new ransomware-as-a-service (RaaS) named Cicada3301, through accessing its affiliate panel on the dark web. The group behind Cicada3301 was contacted after advertising its affiliate program, offering a 20% commission to affiliates like penetration testers and access brokers. It was discovered that Cicada3301's ransomware is sophisticated, targeting various operating systems and capable of exfiltrating data before encryption
The group's affiliate panel includes sections like Dashboard, News, Companies, Chat Support, FAQ, showing its organized structure. With strong source code similarities to BlackCat ransomware and estimated compromises of over 30 organizations primarily in the U.S. and U.K., Cicada3301 poses a significant threat in the cybercrime landscape with its advanced tooling and encryption techniques. https://thehackernews.com/2024/10/cross-platform-cicada3301-ransomware.html