TZW is the latest version of Adhubllka, which has been active since 2019 but has gone largely unreported due to its lower ransom demands.
TZW is the latest variant of the Adhubllka ransomware family, which has been active since 2019. Unlike typical ransomware that demands large sums, TZW targets individuals and small businesses with ransom demands ranging from $800 to $1,600.
Why has TZW gone largely unreported?
TZW has gone largely unreported due to its lower ransom demands, which often lead victims to pay without making a significant media impact. This focus on smaller targets means it doesn't attract the same level of attention as larger ransomware attacks.
How do researchers identify TZW?
Researchers identify TZW by analyzing communication channels used by the threat actors, examining ransom notes, and tracking linked Tor domains. These methods help clarify its connection to the Adhubllka family despite previous misclassifications.
Sign in with LinkedIn