HHS, November 9, 2022
HC3: Analyst Note. Report: 202211091400
Venus Ransomware Targets Publicly Exposed Remote Desktop Services
HC3 is aware of at least one healthcare entity in the United States falling victim to Venus ransomware recently. The threat actors behind Venus ransomware operations are known to target publicly exposed Remote Desktop Services to encrypt Windows devices. This report provides additional information, indicators of compromise, techniques and corresponding mitigations associated with Venus ransomware.