Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home News

Alpha Ransomware Linked to Netwalker

February 19, 2024
Reading Time: 3 mins read
in News
Alpha Ransomware's Link to Netwalker Uncovered

Security researchers have identified significant overlaps between the Alpha ransomware and the now-defunct Netwalker ransomware operation, shedding light on potential connections between the two. While Netwalker operated as a prominent ransomware-as-a-service platform until law enforcement intervention in January 2021, Alpha emerged in February 2023 with a more clandestine approach, avoiding promotion on hacker forums and keeping a low profile. However, recent developments indicate a shift in Alpha’s strategy, with the group launching a data leak site to list victims and publish files stolen from breached networks.

Symantec’s threat analysts have published a report linking Alpha to Netwalker based on shared tools and operational techniques observed in attacks. Notable similarities include the use of a similar PowerShell-based loader for payload delivery, significant code overlaps in the ransomware payload, and similar configurations regarding skipped files, folders, and processes to terminate. Additionally, both ransomware variants employ a temporary batch file for self-deletion after completing the encryption process, suggesting a strong connection between their developers.

Recent Alpha attacks have demonstrated a growing sophistication, with the ransomware now appending random 8-character alphanumeric extensions to encrypted files and including instructions for victims to contact the threat actor via a messaging service in ransom notes. While the reported ransom demands vary, ranging from 0.272 BTC to up to $100,000 depending on the victim’s business size, the utilization of living-off-the-land tools for evasion further underscores the evolving nature of the threat posed by Alpha.

Despite not yet establishing a significant presence in the ransomware landscape, Alpha’s emergence as an emerging threat highlights the need for organizations to remain vigilant. Whether Alpha represents a revival of the Netwalker operation under a new guise or the reuse of its code by a different threat actor remains uncertain. Nonetheless, the observed similarities between the two ransomware variants emphasize the importance of proactive cybersecurity measures and threat intelligence gathering to mitigate potential risks.Reference:

  • Alpha Ransomware Emerges From NetWalker Ashes
Tags: Alpha ransomwareCyber crimeCyber NewsCyber News 2024CybersecurityFebruary 2024Netwalker
ADVERTISEMENT

Related Posts

Kirsten Davies Nominated as Pentagon CIO

Kirsten Davies Nominated as Pentagon CIO

May 8, 2025
China’s Cyber Power Raises UK Concerns

China’s Cyber Power Raises UK Concerns

May 8, 2025
Europol Takes Down Global DDoS Services

Europol Takes Down Global DDoS Services

May 8, 2025
Nomad Thief Arrested for Role in Crypto Hack

NATO Hosts Locked Shields 2025 Cyber Defense

May 7, 2025
Nomad Thief Arrested for Role in Crypto Hack

NSO Group to Pay $167 Million to WhatsApp

May 7, 2025
Nomad Thief Arrested for Role in Crypto Hack

Nomad Thief Arrested for Role in Crypto Hack

May 7, 2025

Latest Alerts

CoGUI Targets Consumer and Finance Brands

COLDRIVER Hackers Target Sensitive Data

Cisco Fixes Flaw in IOS Wireless Controller

New OttoKit Flaw Targets WordPress Sites

Mirai Botnet Exploits Vulnerabilities in IoT

Critical Kibana Flaws Allows Code Execution

Subscribe to our newsletter

    Latest Incidents

    Masimo Cyberattack Disrupts Manufacturing

    Cyberattack Targets Tepotzotlán Facebook

    West Lothian Schools Hit by Ransomware

    UK Legal Aid Agency Faces Cyber Incident

    South African Airways Hit by Cyberattack

    Coweta County School System Cyberattack

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial