Ransomware Gang ‘Triplestrength’ Uses a Malicious Trifecta Against Targets

Security researchers have disclosed details about “Triplestrength,” a previously unknown cybercrime gang that uses a flurry of attacks to compromise targets.

Details of previously unknown threat group released

Details about a new cybercrime gang, "Triplestrength,” are now emerging after a Google threat intelligence security advisory disclosed the group’s modus operandi.

Although security experts have only recently published reports about its activity, the group is not exactly new, having been under scrutiny since 2023.

However, as The Register reported, the group seems to go even further back, with traces of its malicious activity being spotted as early as 2020.

‘Triplestrength’ uses 3-hit combo against targets

According to Google threat intel analyst Kristen Dennesen, the group probably only has a few members. However, despite its modest size, its presence has been spotted on various hacking and cybercrime forums.

Furthermore, researchers spotted several online personae advertising the group’s services, access to various compromised services, and recruiting other members.

The cybercrime gang has been spotted using a combination of attacks against its targets, including crypto-mining, cloud hijacking and ransomware.

Crypto-mining likely migrated from on-premises to cloud environments

In its infancy, Triplestrength employed stealthy crypto-miners on compromised devices, exploiting their resources to generate crypto tokens and siphoning them to its accounts.

Once the perpetrators figured out how to hijack the victims’ cloud servers, they moved the crypto-miners to the cloud environment and deployed ransomware on the on-premises systems.

Although the mining itself isn’t lucrative enough to generate significant proceeds for the perpetrators, the cloud computing expenses incurred could be worth hundreds of thousands of dollars.

Keeping safe against ransomware and other threats

Ransomware and crypto-jacking are still significant threats in the cyber landscape, and it is crucial to take measures to mitigate their damage.

Dedicated solutions like Bitdefender Ultimate Security can stop ransomware, viruses, worms, Trojans, zero-day exploits, spyware, rootkits, and other digital threats before they do harm.

Its key features include multi-layer ransomware protection, behavioral detection for active apps, network threat prevention, and AI-powered scam detection.