Google's Threat Horizons Report reveals a threat group named TRIPLESTRENGTH, known for targeting cloud infrastructures for cryptojacking and on-premise ransomware attacks. They utilize stolen credentials, leveraging various cloud platforms to conduct illicit cryptocurrency mining and ransomware activities. Particularly, they employ ransomware like Phobos and solicit partners in Telegram channels. Intriguingly, TRIPLESTRENGTH's ransomware focus lies more on on-premises resources instead of the cloud, showcasing a strategic pivot in their operations. This report underscores the need for enhanced security in cloud-based environments, a crucial aspect of cybersecurity vigilance.
This actor engaged in a variety of threat activity, including cryptocurrency mining operations on hijacked cloud resources and ransomware activity.
TRIPLESTRENGTH engages in a trifecta of malicious attacks, including illicit cryptocurrency mining, ransomware and extortion.
Collection
[
|
...
]