Among the myriad of new ransomware groups on the dark web, a noteworthy addition has surfaced – the WereWolves ransomware group. This new ransomware group has already claimed 21 victims, with 14 in Russia and 7 spread across the USA, France, Netherlands, Germany, Serbia, and Macedonia.
Among the new ransomware gangs we’ve seen in 2023, the WereWolves ransomware group is one of the most prominent ones with a full-fledged website that offers recruitment calls for young hackers who want to join the dark web world. This is a breakdown of their operations and how this group came into existence in fall 2023.
The WereWolves Ransomware Group
According to a report by Hackmanac, the WereWolves ransomware group emerges as one of the most formidable ransomware gangs, dedicated and committed to launching cyberattacks and data breach operations.
Their mission statement, as analyzed by Hackmanac, highlights the group’s dedication to fortifying the cyber immunity of global companies, a mission deemed financially justified by WereWolves.
Moreover, the ransomware group runs a full-fledged website where it hosts several pages, sections, achievements, and other important details about its plans. For example, the “Portfolio” section extends an invitation to security researchers and hackers, both ethical and unethical.
This bounty program covers vulnerabilities in website security, doxing, software, TOX, and TOR, with bounties ranging from $1,000 to an impressive $1 million.
In a bid for public recognition, the WereWolves cybercrime group proudly asserts responsibility for an attack on the Electricity Company of Ghana (ECG) last year. The consequences of this attack, leading to power outages due to ECG’s inability to purchase power, highlight the group’s reach and capabilities in launching large-scale cyberattacks.
WereWolves Recruitment Drive, Victims, and More
In their research, Hackmanac found that the ransomware group runs a large-scale recruitment drive, targeting individuals with hacking skills. The promise of flexibility, a regular salary, and training. Notably, the requirement of a 1 Bitcoin deposit serves as a unique security measure, strategically aimed at deterring undesirable candidates like law enforcement or journalists. Applicants must showcase their hacking capabilities and readiness to engage in cyber attacks upon joining.
The hacker group also keeps a diverse portfolio of targets, especially large-scale businesses, and entities who fell victim to their operations. The stats and figures say that the victims in the professional/scientific/technical sector lead with 28.6%, closely followed by the financial/insurance and hospitality sectors, each holding a share of 14.3%. The wholesale, telecommunications, and information communication technology sectors follow each accounting for 9.5%. Lastly, the manufacturing, energy utilities, and other services sectors each comprise 4.7%.
This is an ongoing story and The Cyber Express is closely monitoring any developments with the WereWolves ransomware group. We’ll update this post once we have more information on the ransomware gang and its operations.
Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. The Cyber Express assumes no liability for the accuracy or consequences of using this information.
