\n
![](\"https:\/\/cdn.arstechnica.net\/wp-content\/uploads\/2019\/07\/GettyImages-597257986-1152x648.jpg\")
<\/p>\n
\n<\/p>\n
Sizzling on the heels of a significant ransomware group being taken down by way of a global regulation enforcement operation comes a brand new improvement that highlights the whack-a-mole nature of such actions: A brand new group, seemingly comprised of a few of the identical members, has already taken its place.<\/p>\n
The brand new group calls itself Chaos, in recognition of the .chaos identify extension its ransomware stamps on information it has encrypted and the \u201creadme.chaos[.]txt\u201d identify given to ransom notes despatched to victims. Researchers at Cisco\u2019s Talos Safety Group stated Thursday<\/a> that since Chaos emerged in February, it has engaged in \u201cbig-game looking\u201d\u2014which means assaults designed to extract hefty funds\u2014which have primarily focused organizations within the US and, to a lesser extent, the UK, New Zealand, and India. Talos stated it lately noticed the group demanding a ransom of about $300,000.<\/p>\n In change for paying the demanded ransom, victims get a pinky swear that they\u2019ll obtain a decryptor and an in depth report of the vulnerabilities the group members discovered within the sufferer\u2019s community and that the group will delete all the info in its possession. Victims who refuse to pay face the specter of by no means getting their information unlocked, having information publicly disclosed, and being subjected to distributed denial-of-service assaults.<\/p>\nStrolling in your footsteps<\/h2>\n