Written in Rust and capable of targeting both Windows and Linux/ESXi hosts, Cicada3301 first emerged in June 2024, inviting potential affiliates to join their ransomware-as-a-service (RaaS) platform via an advertisement on the RAMP underground forum.
Did I overlook the most important thing, or did they not write a word on how this thing actually ends up on ones computer?
Since this is an offshoot of BlackCat, some experts say exploits in remote access software.