Cybersecurity researchers from ESET have discovered a toolset called Spacecolon that spreads the Scarab ransomware worldwide. The toolset enters victim organizations by exploiting vulnerable web servers or using brute-force attacks on RDP credentials. Spacecolon contains Turkish strings, suggesting the involvement of a Turkish-speaking developer. The toolset comprises three components - ScHackTool, ScInstaller, and ScService - which allow the operators to establish remote access and launch ransomware attacks. ESET also found a new ransomware family, ScRansom, created by the same developer behind Spacecolon. The ransomware encrypts drives using the AES-128 algorithm. #ESET #cybersecurity #Spacecolon #Scarab #ransomware

https://www.infosecurity-magazine.com/news/scarab-ransomware-deployed-via/