Cybersecurity and Infrastructure Security Agency issues alert on FiveHands ransomware attacks. Attackers used tools to steal information, obfuscate files and demand a ransom. CISA offers no attribution of who is behind the attacks. The group has mainly targeted small and midsized businesses in telecommunications, healthcare, construction, engineering, food and beverage, education, real estate and other sectors. The agency offers a long list of recommendations to protect against the ransomware and other types of malware. The ransomware uses a public key encryption scheme called NTRUEncrypt to ensure data cannot be decrypted.”]
Source: https://www.inforisktoday.com/cisa-alert-describes-fivehands-ransomware-threat-a-16543