Cicada3301, a new ransomware group, has emerged as a significant threat, targeting critical sectors in the US and UK. The ransomware, written in Rust, functions across multiple platforms with advanced encryption using ChaCha20 and RSA. Cicada3301's affiliate program offers 20% commission on ransom payouts, with affiliates having control over generating ransomware samples, negotiating payments, and customizing attacks
Employing aggressive tactics, the ransomware can disrupt services, delete shadow copies, and avoid detection. Organizations are urged to enhance security measures like multi-factor authentication, early detection, proper backups, and regular patching to combat the evolving threats posed by advanced ransomware groups like Cicada3301. https://www.infosecurity-magazine.com/news/cicada-ransomware-critical-sectors/