3:00pm, 01 Nov 2019

TLP Rating: White

DDoS extortion campaign targeting financial sector

CERT NZ has recently received reports relating to an extortion campaign targeting companies within the financial sector in New Zealand. Similar activity has been seen internationally.

The cybercriminals claim to be Russian advanced persistent threat group (APT) ‘Fancy Bear / Cozy Bear’ and demand a ransom to avoid DDoS attacks. They carry out a short DDoS against a company’s IP address to demonstrate intent.