An advisory is being issued by CISA, the FBI, and the Multi-State Information Sharing and Analysis Center, or MS ISAC, to disseminate indicators of compromise and TTPs associated with Vice Society actors and their ransomware campaigns.
The FBI, CISA, and the MS-ISAC have recently observed Vice Society actors targeting the education sector disproportionately with ransomware attacks.
The FBI, CISA, and MS-ISAC encourage organisations to follow the mitigation recommendations in the alert documentation.
Attacks may increase as the school year begins in 2022/2023 and criminal ransomware groups see opportunities for successful attacks.