A newly identified threat group, dubbed “FIN11,” is deploying Clop ransomware and exfiltrating data from its targets for extortion efforts. FIN11 has been around for about four years, but researchers just completed efforts to connect various cybercriminal activities to it. The group has been observed sending out phishing emails and other communications in German, according to the report. The majority of Clop attacks have been in Europe, FireEye Mandiant notes. The report also notes that FIN11 will repeatedly attempt to install Clop.”]
Source: https://www.inforisktoday.com/another-threat-group-joins-ransomware-extortion-racket-a-15183