Ransomware Roundup – Lynx

SUMMARY :

The Lynx ransomware, first detected in July 2024, is a Windows-targeting malware that encrypts files and demands ransom for decryption. It shares similarities with the INC ransomware but offers more granular control. Lynx encrypts files with a .LYNX extension, changes desktop backgrounds, and prints ransom notes. It targets specific processes and services, avoiding certain folders and file types. The ransomware has affected 96 victims across 16 countries, primarily in the United States, with manufacturing and construction industries most impacted. Despite claims of excluding certain sectors, some healthcare and energy organizations have been targeted. Fortinet products offer protection against Lynx through various security measures.

OPENCTI LABELS :

ransomware,windows,encryption,construction,data leak,lynx,manufacturing,brave prince


Open in NetmanageIT OpenCTI Public Instance with below link!


Use public read only username and password on login page.

NOTE : Use Public READ only user credentials on login page banner.


Ransomware Roundup – Lynx