The Agenda ransomware group has been noticed acquiring new malware making use of the Rust programming language and utilizing it to breach a number of companies.
“The risk actors not only claimed that they were capable to breach the servers of these companies but also threatened to publish their documents,” wrote Development Micro researchers today after exploring the new malicious marketing campaign.
In accordance to the advisory, the organizations the ransomware group claimed to have breached on its leak internet site are found in various countries and mainly belong to the production and IT industries. They have a blended earnings of all over $550m.

Protect and backup your data using AOMEI Backupper. AOMEI Backupper takes secure and encrypted backups from your Windows, hard drives or partitions. With AOMEI Backupper you will never be worried about loosing your data anymore.
Get AOMEI Backupper with 72% discount from an authorized distrinutor of AOMEI: SerialCart® (Limited Offer).
➤ Activate Your Coupon Code
“Just lately, we observed a sample of the Agenda ransomware created in Rust language,” Development Micro mentioned, incorporating that the variant has also been found employing intermittent encryption strategies to produce more rapidly encryption and avoid detection far more competently.
“Notably, the exact ransomware, originally published in Go language, was recognised for concentrating on healthcare and instruction sectors in countries like Thailand and Indonesia,” the security scientists explained.
“The actors custom made prior ransomware binaries for the supposed victim by the use of confidential information this sort of as leaked accounts and unique business IDs as the appended file extension.”
Compared with the former Golang variant, nonetheless, Pattern Micro claimed the Agenda ransomware group did not consist of the victim’s qualifications in the Rust variant’s configuration.
“This attribute of the latter helps prevent other researchers not only from checking out the ransomware’s chat assistance web-site but also accessing the risk actors’ conversations when a sample results in being readily available externally.”
The system would also reduce unsolicited messages from other people in addition to the target.
In accordance to Trend Micro, the Agenda ransomware group is a person of lots of little by little migrating its ransomware code to Rust.
“Rust language is turning into additional common amid danger actors as it is a lot more complicated to analyze and has a decreased detection price by antivirus engines.”
The programming language is also currently being progressively used by Google to boost the security of the Android OS.
Some pieces of this post are sourced from:
www.infosecurity-magazine.com