You are here

Conti Ransomware Bolsters Targeting Backups

Conti Ransomware Bolsters Targeting Backups

Created: Thursday, September 30, 2021 - 13:28
Categories:
Cybersecurity

The Conti ransomware group is employing new techniques to cripple a victim’s backup software, according to a recent report from the cyber-risk prevention company Advanced Intelligence. The Conti ransomware gang has earned its spot as one of the more prolific ransomware groups for many of its advanced tactics, techniques, and procedures (TTPs), especially its propensity to destroy backups. This new behavior is notably targeting Veeam backups – including exfiltrating the backup data, locking the victim’s system, and manually removing the backups. Additionally, members are encouraged to review last week’s Joint Cybersecurity Advisory (AA21-265A) on Conti ransomware. For more on Conti’s latest attack method and mitigation recommendations, visit Threatpost