Cuba Ransomware Group Deploys New Malware

Kaspersky has found new versions of the Cuba ransomware group’s Burntcigar malware that uses encrypted data to avoid detection from antivirus applications. The Burntcigar malware tampers with I/O control codes to facilitate cyber-attacks. The Cuba group, responsible for attacks on various sectors globally, regularly updates its tools and techniques, including altering timestamps to mislead investigators. Kaspersky has shared tips for protection against such attacks and offers free access to its Threat Intelligence Resource Hub.