HellCat and Morpheus: The Dynamic Duo of Ransomware Mischief!
HellCat and Morpheus ransomware gangs are sharing more than just a love for horror movie references—they’re also swapping code like it’s a new Netflix password. With payloads almost identical, researchers believe these groups, along with Underground Team, are mingling in the ransomware ecosystem’s chaotic cocktail party.
Hot Take:
Just when you thought there couldn’t be another plot twist in the ransomware soap opera, behold HellCat and Morpheus, the dynamic duo of digital delinquency! Sharing a codebase like siblings sharing a Netflix account, these two are giving cybersecurity experts a run for their money. As if ransomware wasn’t already complicated enough, now we have to deal with “twinning” payloads. What’s next, ransomware family reunions?
Key Points:
- HellCat and Morpheus ransomware gangs have emerged with nearly identical payloads.
- The two groups are believed to share infrastructure, suggesting a shared codebase or builder application.
- Both groups have been observed leaving original file extensions after encryption, an uncommon tactic.
- Ransomware notes for both groups are nearly identical and share similarities with the Underground Team.
- The ransomware ecosystem shows increased collaboration and overlap among different groups.
Already a member? Log in here