RedCurl Shifts from Espionage to Ransomware with First-Ever QWCrypt Deployment
The Russian-speaking hacking group called RedCurl has been linked to a ransomware campaign for the first time, marking a departure in the threat actor's tradecraft. The activity, observed by Romanian cybersecurity company Bitdefender, involves the deployment of a never-before-seen ransomware strain dubbed QWCrypt. RedCurl, also called Earth Kapre and Red Wolf, has a history of orchestrating
The Russian-speaking hacking group called RedCurl has been linked to a ransomware campaign for the first time, marking a departure in the threat actor's tradecraft.
The activity, observed by Romanian cybersecurity company Bitdefender, involves the deployment of a never-before-seen ransomware strain dubbed QWCrypt.
RedCurl, also called Earth Kapre and Red Wolf, has a history of orchestrating
![⚡ THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips [27 February]](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgA8HuSGC2Bi7PiuXHsj4JvmjwxIgTeHQTgl-ASOMLbCMt4S4kyr-0Vuuzb-YaJeoTIhleDmVGZr0H1b4OfH_o21T4kZnMVi7o4ulwngKAxahuadmkyRr4i7N8z3KOJbI5x_stxthWafp_lpWuuyieh2yuIqA1V8vdeCss9jAFDO0M1uf0bNvBkGMkwPlqk/s1600/recap-article.png?#)
