There are two inevitable things in life: ransomware and taxes.

Threat actors are always lurking to make a quick buck by deploying ransomware in companies.
While specialized media and security researchers focus on attacks by prominent groups like Lockbit (it's still alive!), and quickly start analyzing the malware, conducting reverse engineering, publishing their findings on vendors' blogs, and presenting talks at major events, countless other threat groups are carrying out their attacks stealthily.

Likewise, there are a multitude of other ransomware groups that have never collected the reward or the glory, despite all the efforts they have made. Some, for lack of money, experience, or even laziness, rent or buy a "Lego" for custom construction, also known as builders, that are not but a copycat version of other malware, others conduct attacks that look like ransomware, act like ransomware but are not.

In this talk, we will discuss these dark ransomware attacks that never succeeded.

Why? Discussing unknown ransomware is essential for proactively understanding the evolving threat landscape and equipping cybersecurity professionals and organizations with the knowledge to defend against a wide range of potential attacks.