
Maze.Ransomware is a sophisticated windows strain that has been hitting companies since at least May 2019. By the end of September 2019, Maze started becoming infamous for encrypting files and demanding ransom. Malicious actors behind Maze have been intruding into confidential data systems, encrypting sensitive files, and demanding for ransom in bitcoins.
Initially, the actors behind Maze.Ransomware distributed the malware using phishing campaigns and exploit kits. The malware is now reportedly spreading via post-compromise, a method to maximize the spread to more networks. Maze attackers are maintaining a public-facing website where they release all the compromised data when a victim refuses to pay ransom.
Until the first quarter of 2020, the malware, victimized companies belonging to health care, government, retail, insurance, and finance, spanned across multiple global regions, disrupting operations.
Read the advisory to understand the history, background, and recent developments concerning Maze ransomware. The advisory gives complete details about the Indicators of Compromise (IoCs) of Maze and elaborates on techniques to detect malware and respond to it to minimize the impacts.
Get your copy now!
SISA is a Leader in Cybersecurity Solutions for the Digital Payment Industry. As a Global Payment Forensic Investigator of the PCI Security Standards Council, we leverage forensics insights into preventive, detective, and corrective security solutions, protecting 1,000+ organizations across 40+ countries from evolving cyberthreats.
Our suite of solutions from AI-driven compliance, advanced security testing, agentic detection/ response and learner focused-training has been honored with prestigious awards, including from Financial Express, DSCI-NASSCOM and The Economic Times.
With commitment to innovation, and pioneering advancements in Quantum Security, Hardware Security, and Cybersecurity for AI, SISA is shaping the future of cybersecurity through cutting-edge forensics research.