At least one Hades attack has a connection to Hafnium group, researchers say. The Hades gang steals credentials and related corporate data after moving laterally through the system. The gang also attempts to extract ransom payments, ranging from $5 million to $10 million. The attackers focus on hitting a few targets in specific industries, Awake Security says. As of Thursday, more than 92% of vulnerable Exchange servers had been patched or mitigated, Microsoft said in an update. An earlier version of this article said a Chinese gang dubbed “Hafnium” was responsible.”]
Source: https://www.cuinfosecurity.com/hades-ransomware-gang-linked-to-exchange-attack-a-16293