Cyber Security

FOG ransomware gang abuses employee monitoring tools in unusual multi-stage attack

Photo of liralbes liralbes Send an email 1 day ago
0 0 1 minute read
FOG ransomware gang abuses employee monitoring tools in unusual multi-stage attack

FOG ransomware hackers are known for targeting American educational institutions and now use legitimate employee monitoring software Syteca, as well as several open source pen testing tools, as well as usual encryption.

In investigating the May 2025 attack on an unnamed financial institution in Asia, Symantec researchers discovered hackers using Syteca (formerly Ekran) and several pen testers including GC2, Adaptix and Stowaway, who discovered this behavior in the Ransomware attack chain.

Bugcrowd’s CISO Trey Ford reflects on the shift in Fog’s tactics, saying: “We should expect to use ordinary and legal enterprise software as the norm – we call it “live on land.” Why would attackers introduce new software, create more noise in logs, and add when the allowed software can give them when to work for it?”

Photo of liralbes liralbes Send an email 1 day ago
0 0 1 minute read
Photo of liralbes

liralbes

Related Articles

Dutch police identified young users of 11-year-old young man in crack forum

Dutch police identified young users of 11-year-old young man in crack forum

1 day ago
hackerangriff treibt servettenhersteller fasana in die lansolvenz

hackerangriff treibt servettenhersteller fasana in die lansolvenz

1 day ago
Bert ransomware: What you need to know

Bert ransomware: What you need to know

1 day ago
Ungepatchte LückenErmöglichenübernahmevon gitlab-konten

Ungepatchte LückenErmöglichenübernahmevon gitlab-konten

2 days ago

Leave a Reply

Your email address will not be published. Required fields are marked *

Back to top button