Egregor is the latest ransomware strain that uses a “hack-and-leak” strategy, where the cybercriminal gang threatens to leak the stolen data if the victims’ stolen data are not met within a certain time. The latest strain has been linked to several high-profile incidents, including attacks against Barnes & Noble, Canon USA, Crytek and Ubisoft. Group-IB researchers say the latest Qbot campaign typically starts with phishing emails that contain malicious Microsoft Excel documents designed to look like DocuSign-encrypted documents.”]
Source: https://www.databreachtoday.com/qbot-banking-trojan-now-deploying-egregor-ransomware-a-15430