A newly identified threat group, dubbed “FIN11,” is deploying Clop ransomware and exfiltrating data from its targets. Researchers at FireEye Mandiant have officially designated a new financially motived threat group. FIN11’s activities initially focused on deploying point-of-sale malware, along with memory-scraping tools such as BlueSteal, to harvest credentials and payment data. The group has been observed sending out phishing emails and other communications in German, according to the report.”]
Source: https://www.cuinfosecurity.com/another-threat-group-joins-ransomware-extortion-racket-a-15183