CISA Alert AA22-223A – #StopRansomware: Zeppelin Ransomware. [CISA Cybersecurity Alerts}

Zeppelin ransomware functions as a ransomware-as-a-service (RaaS), and since 2019, actors have used this malware to target a wide range of businesses and critical infrastructure organizations. Actors use remote desktop protocol (RDP), SonicWall firewall vulnerabilities, and phishing campaigns to gain initial access to victim networks and then deploy Zeppelin ransomware to encrypt victims’ files.
AA22-223A Alert, Technical Details, and Mitigations
Zeppelin malware YARA signature
What is Zeppelin Ransomware? Steps to Prepare, Respond, and Prevent Infection
Stopransomware.gov is a whole-of-government approach …

alert alerts cisa cisa alert cybersecurity ransomware stopransomware zeppelin zeppelin ransomware