Threat Landscape Dashboard

Assessing today's threats and the relationships between them

Cuba - Ransomware

The ransomware appends ".cuba" to infected files and requires the victim to email the threat actor for the decryption key. The ransom note reports databases and the contents of the ftp and file servers were stolen before the files were encrypted. Cuba uses RSA-2048 encryption and focuses on the Microsoft Windows operating system.
Name Modified Date Sources
Cuba - Ransomware 2020-04-22