Hellcat is a newly identified ransomware group using a Ransomware-as-a-Service (RaaS) model to target government, education, and energy sectors. The group employs double-extortion tactics, stealing sensitive data before encrypting systems to pressure victims into paying ransoms. In November 2024, Hellcat exploited a zero-day vulnerability in Schneider Electric’s Atlassian Jira system, stealing 40GB of data and demanding $125,000 in Monero. The group’s attacks mirror those of Morpheus, another RaaS entity, suggesting shared infrastructure and tactics. To combat such threats, organizations should implement Zero Trust security frameworks, regularly patch vulnerabilities, and deploy advanced threat detection systems. Continue here.
