An example of an Egregor ransomware note used during a previous attack (Source: Digital Shadows)
The FBI issued a warning this week over the growing threat from the operators behind the Egregor ransomware variant and other cybercriminal gangs affiliated with the group.
The alert notes that, since September, the Egregor gang and its affiliates claim to have compromised approximately 150 corporate networks in the U.S. and other countries. In some cases, the extortion demands have reached $4 million, according to a previous report by cybersecurity firm Group-IB.
In addition to acting on its own, Egregor has affiliated cybercriminals that carry out their own attacks and receive a percentage of the ransom if the money is paid by the victim. This makes defending and mitigating against these types of attacks difficult.