The infamous FIN8 hacking group appears to be entering the ransomware space with a new ransomware strain dubbed White Rabbit.
FIN8 is a financially motivated threat group known for their use of spear-phishing campaigns targeting the retail, restaurant, and hospitality industries. The new White Rabbit ransomware has been found to use Badhatch, aka Sardonic, FIN8's custom backdoor.
The U.S. government notes that ransomware payments are on pace to cross the billion-dollar threshold. Acronis Cyber Protect detects and stops any ransomware with its included Active Protection — recognizing even new threats like White Rabbit, as well as the Sardonic backdoor, based on the malicious behaviors that they exhibit.