Jason Hill reports:
First observed in October 2022, HardBit is a ransomware threat that targets organizations to extort cryptocurrency payments for the decryption of their data.
Seemingly improving upon their initial release, HardBit version 2.0 was introduced toward the end of November 2022, with samples seen throughout the end of 2022 and into 2023.
Like most modern ransomware threats, HardBit claims to steal sensitive data from their victims, likely upon first gaining access to the network, before launching their payload to encrypt data.
Read more at Varonis. They don’t have a blog or leak site at this time that I have found, but Varonis article reveals an interesting tactic that they use to try to get the victim to reveal how much cyberinsurance they have so Hardbit will know when a negotiator is low-balling them.
h/t, SecurityAffairs