Hacking group FIN7 is distributing its new endpoint detection and response optimization tool “AvNeutralizer” on several cybercrime forums to enhance the stealth of ransomware operations. SC Media Reports

AvNeutralizer has already been exploited in attacks by the BlackBasta ransomware gang, formerly associated with FIN7, an analysis by Sentinel Labs has revealed.

Such a move to provide AvNeutralizer was noted by cybersecurity experts to indicate the continued evolution of FIN7, which initially joined financial point-of-sale malware in 2012 before moving to ransomware intrusions eight years later. .

“They’re very inventive, pivoting quickly when too much attention is directed at them, changing their persona on a dime. This contrasts with other dangerous actors we encounter. Those that make a lot of noise, but don’t pivot and go underground when it’s hot, said Heath Renfrew, co-founder of Phoenix 24 – are mostly brash and crave FIN7’s attention. Immediately realizes that they must change direction before the authorities zero in.



Source link