Luna Moth is a brand-new data extortion group that has been breaking into businesses to spoof users’ data. If the victims don’t pay a ransom to prevent the information from being made public, hackers threaten to make the records publicly accessible.
The hacker group adopted the alias Luna Moth and has been engaged in phishing efforts since at least March in which remote access tools (RAT) were distributed, enabling corporate data theft.
How does the scam work?
The Luna Moth ransomware gang has been analyzed by the incident response team at cybersecurity firm Sygnia, it was noted that the actor is attempting to establish a reputation under the name Silent Ransom Group (SRG).
In a report published, Sygnia claims that although the goal of Luna Moth, also known as TG2729, is to acquire key data, its method of operation is similar to that of a scammer.
The organization has been posing as Zoho MasterClass Inc. and Duolingo over the last three months, operating a widespread phishing scam. The malicious emails are sent from Gmail accounts that were altered to look like official company email accounts, claiming to be from the Zoho Corporation or Duolingo.
Domains used
In April 2022, the first verified campaign-related domai
[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.
Read the original article: