A cybercriminal group, RansomHub, is working with another threat actor to deliver its ransomware. The group is working with the malicious actor behind the FakeUpdates malware-as-a-service (MaaS) framework. The attacks are being perpetrated against U.S. government organizations. The attacks began to be detected at the start of this year against the U.S. government. Attacks have also occurred in Japan and Taiwan, and the banking and consulting industries are also impacted. The incidents show RansomHub’s desire to collaborate with other threat actors, fortifying its own threat activities. 

Read more: https://www.darkreading.com/cyberattacks-data-breaches/ransomhub-fakeupdates-government-sector