Electronic Warfare Associates p
Evidence of the hack is still visible online because Google has cashed the ransom notes and encrypted files.
The encrypted files and ransom note are associated with a Ryuk ransomware infection.
In response to the incident, the company took down the infected web servers, but according to ZDNet other EWA websites have been impacted, including EWA Government Systems Inc., EWA Technologies Inc., Simplicikey, and Homeland Protection Institute.
At the time, Electronic Warfare Associates
A few days ago, security experts from MalwareHunterTeam have discovered a new version of the Ryuk Stealer malware that has been enhanced to allow its operators to steal a greater amount of confidential files related to the military, government, financial statements, and banking.
The new variant of the Ryuk Stealer malware implements a new file content scanning feature and is able to search for additional keywords in the filenames for data
It is not clear if the malware was developed by the threat actors behind Ryuk Ransomware for data