Intel Name: Lynx on the prowl: targeting smbs with double-extortion tactics
Date of Scan: October 24, 2024
Impact: Medium
Summary: “Lynx on the Prowl: Targeting SMBs with Double-Extortion Tactics” examines the emergence of the Lynx ransomware group, which has rapidly targeted over 25 small and medium-sized businesses (SMBs) in North America and Europe since its debut in mid-July 2023. Despite claiming to avoid hospitals and nonprofits, Lynx employs aggressive double-extortion tactics, threatening to leak sensitive data alongside encrypting it. Investigations revealed strong similarities between Lynx and another group, INC Ransom, including identical code structures and shared operational methods, highlighting a concerning trend in ransomware activity.
