Data Recovery from INC Ransomware Due to Operational Security Lapse

Data Recovery from INC Ransomware Due to Operational Security Lapse

First seen 23 Jan 2026, 22:10 UTC BleepingcomputerCsoonlineScworldEinpresswire 85% similarity 44.0

Article Content

Browse articles
ThreatCluster

An operational security failure by the INC ransomware gang allowed researchers to recover data stolen from twelve U.S. organizations. Cyber Centaurs, a digital forensics firm, discovered the gang's cloud storage infrastructure, which contained exfiltrated data, during their investigation. The attackers used a variant of the RainINC ransomware and left behind artifacts that facilitated the recovery process.

ThreatCluster AI

Community

Browse all →