A Technical Look at the New ‘Termite’ Ransomware that Hit Blue Yonder

The ransomware attack that hit supply chain management platform Blue Yonder and its customers last month was the work of a new ransomware group called “Termite.” Cyble Research and Intelligence Labs (CRIL) researchers have examined a Termite ransomware binary and determined that Termite is essentially a rebranding of the notorious Babuk ransomware . The Termite leak site claims seven victims so far (geographic distribution below). We’ll cover the technical details of the new Termite ransomware s