Maze ransomware, also known as Chacha, is an RSA and ChaCha20 encryption ransomware first discovered in May 2019. Since October 2019, Maze activities have increased, with several high-profile attacks occurring in November and December. Maze operators are among the newer generation of cyber crime tacticians, who tend to combine scalable automated distribution and infection with targeted attacks against a specific entity and long-term presence in the victim’s environment.
The recent publication of a public website listing Maze victims and live links to some of their stolen confidential documents, as reported by Brian Krebs, is a sign of the group’s increasing confidence and willingness to act on their threats.
Download our latest Threat Intel report on Maze ransomware here.
If you would like to receive our Threat Intelligence Report directly to your inbox, please subscribe.