The BlackCat/ALPHV ransomware group altered its tradecraft earlier this year to conduct more potent attacks, according to the most recent analysis on the group. Additionally, several research organisations ranked it among the top 10 most active ransomware gangs in an advice from 2022. The group continues to attack many more organisations hard because of its terrible history of collecting private financial and health information from various companies.
In the most recent discovery, Trend Micro researchers discovered that the gang was imitating the website of a popular Windows file-transfer programme called WinSCP in order to infect users. Through search engines like Bing or Google, the fraudulent website was disseminated.