Fog Ransomware Targets US Sectors Via Compromised VPN Credentials

Threat Level – Amber | Vulnerability Report
Download PDF

A new ransomware operation named ‘Fog,’ launched in early May 2024, is targeting educational organizations and the recreation sector in the US. The threat actors were able to infiltrate victim environments by exploiting compromised VPN credentials, with the remote access occurring through two separate VPN gateway vendors.

What’s new on HivePro

Get through updates and upcoming events, and more directly in your inbox