
CrownX Ransomware Embedded Inside Avalon Framework Targets Recovery and Backup Systems
A previously undocumented multi-stage malware framework, tracked as Avalon, that embeds a ransomware component internally labeled CrownX and specifically targets recovery and backup systems. By placing malicious content inside an ISO image rather than attaching an executable directly, the actor avoided email-layer scanning and social-engineered victims into mounting a seemingly legitimate “Secure Document” package. A […]
The post CrownX Ransomware Embedded Inside Avalon Framework Targets Recovery and Backup Systems appeared first on Cyber Security News.