A relatively new ransomware group known as Embargo has become a key player in the cybercrime underground, moving over $34 million in crypto-linked ransom payments since April 2024.
Operating under a ransomware-as-a-service (RaaS) model, Embargo has hit critical infrastructure across the United States, with targets including hospitals and pharmaceutical networks, data-ct-non-breakable=”null” href=”https://www.trmlabs.com/resources/blog/unmasking-embargo-ransomware-a-deep-dive-into-the-groups-ttps-and-blackcat-links?utm_campaign=Brand-Global_Unmasking-Embargo-Ransomware:-A-Deep-Dive-Into-the-Group%E2%80%99s-TTPs-and-BlackCat-Links_Blog&utm_medium=media-outreach&utm_source=trm&utm_campaignname=Brand-Global&utm_activity=Unmasking-Embargo-Ransomware:-A-Deep-Dive-Into-the-Group%E2%80%99s-TTPs-and-BlackCat-Links&utm_activitytype=Blog” title=”null”>according to blockchain intelligence firm TRM Labs.
Victims include American Associated Pharmacies, Georgia-based Memorial Hospital and Manor, and Weiser Memorial Hospital in Idaho. Ransom…
