Rhysida

Reports
7
First seen
Oct 8
Last seen
Jun 18
Motivation
financial, extortion, ransomware

Targeting

Sectors
manufacturing ×1education ×1government ×1other ×1
Victim regions
United States ×1Germany ×1

Top ATT&CK techniques

T1566 Phishing ×2T1078 Valid Accounts ×1T1036 Masquerading ×1T1021 Remote Services ×1T1553.006 Code Signing ×1T1110 Brute Force ×1T1219 Remote Access Software ×1T1036.005 Masquerading: Match Legitimate Name or Location ×1T1567 Exfiltration Over Web Service ×1T1566.002 Phishing: Phishing Link ×1T1195 Supply Chain Compromise ×1T1486 Data Encrypted for Impact ×1

Indicators

domain ×4cve ×1

Indicator values are available on Pro and via the API.

Associated CVEs

Recent reports

This page shows data on a 7-day delay. Free accounts get the full delayed feed; real-time reports, indicators, and the API start at $29/mo.