The Codefinger ransomware represents a new frontier in cyber threats, specifically targeting AWS S3 buckets. By exploiting Server-Side Encryption with Customer-Provided Keys (SSE-C), attackers gain control over the encryption process, rendering recovery impossible without their AES-256 keys.
First seen on securityboulevard.com
Jump to article: securityboulevard.com/2025/01/codefinger-ransomware-detection-and-mitigation-using-mixmode/
