Venus Ransomware targets publicly exposed Remote Desktop services

16-Oct-22

Threat actors encrypt Windows PCs by breaking into publicly available Remote Desktop services using the relatively new Venus Ransomware. Security expert linuxct contacted MalwareHunterTeam in order to get information on the ransomware, who then informed BleepingComputer about it.

Venus Ransomware has since encrypted victims all across the world and looks to have started operating in the middle of August 2022. Although it is unknown if they are connected, another ransomware has been utilising the same encrypted file extension since 2021. Read More…