Summary: FunkSec, an emerging ransomware group, has claimed responsibility for attacks on over 80 victims in December 2024, utilizing a ransomware-as-a-service model and leveraging AI in their operations. The group is characterized by inexperienced members engaging in both cybercrime and hacktivism, with ties to previous hacktivist movements.
Threat Actor: FunkSec | FunkSec
Victim: Various | Various Victims
Key Point :
- FunkSec operates under a ransomware-as-a-service model, engaging in double extortion tactics.
- The ransomware is written in Rust and appears to have been developed by an inexperienced actor using AI tools.
- They have a data leak site and offer various malicious tools, including a DDoS tool and an AI chatbot.
- The group targets security features to facilitate ransomware deployment and demands low ransoms.
- FunkSec’s activities may align with hacktivist campaigns, particularly those supporting the Free Palestine movement.
Source: https://www.securityweek.com/emerging-funksec-ransomware-developed-using-ai/