Cuba group active with new ransomware
The Cuba ransomware group is deploying a new malware that is not always detected by modern antivirus programs. Victims are companies all over the world, including in Germany and Austria. While investigating a customer incident in December 2022, Kaspersky discovered three suspicious files. These files triggered a series of actions that resulted in the download of the 'komar65' library, also known as 'BUGHATCH'. BUGHATCH is a sophisticated backdoor that nests itself in the process memory of a device. Within the space allocated to it, it runs an embedded…