The Rhysida ransomware gang has successfully hacked the Government of Peru, breaching its official digital platform, Gob.pe, and releasing documents purportedly stolen from it. They are demanding a ransom of five bitcoins, giving the government a seven-day deadline for payment. This attack is part of a broader trend of ransomware incidents affecting numerous organizations across various sectors.
Keypoints :
- The Rhysida ransomware group claims responsibility for the cyberattack on the Government of Peru.
- They have released images of documents allegedly stolen from the Gob.pe platform.
- The gang is demanding a ransom of five bitcoins with a seven-day payment deadline.
- Rhysida has been active since May 2023 and has targeted at least 182 organizations across various industries.
- The affected sectors include education, healthcare, manufacturing, information technology, and government.
- In December 2023, the FBI and CISA released a Cybersecurity Advisory to warn about Rhysida ransomware attacks.
- The advisory aims to disseminate information on tactics, techniques, and procedures related to the group.
- Indicators of compromise (IOCs) and TTPs associated with Rhysida were identified in investigations as recent as September 2023.