On Tuesday, April 28th, 2020 at 1:00 PM ET the RH-ISAC, in partnership with Booz Allen Hamilton, will provide a member-exclusive briefing on Maze Ransomware. Booz Allen Hamilton’s Incident Response and Forensics team will present a deep-dive technical and forensics briefing detailing the Maze group, their malware and TTPs, and their recent attacks. The briefing and analyst discussion/Q&A following the briefing will cover the Maze group’s evolving behavior including the Cognizant ransomware attack. The discussion will expand on questions such as: “what could the Cognizant ransomware attack potentially mean to its customers?” and “what steps should customers take to protect themselves?” in addition to fostering open dialogue on potential scenarios and prevention, detection, and mitigation best practices.

About Maze Ransomware

Maze is an active long-running ransomware family with sophisticated techniques in stealing and publishing victim data. According to a recent Booz Allen Intelligence Study, Maze maintains a non-paying “client” roster of 81 targeted organizations dating back to November 2019. Maze is also the adversary behind the recently published Cognizant ransomware attack. Next week, the RH-ISAC, in partnership with Booz Allen Hamilton, will host two detailed briefings on Maze for its member community.

April 28, 2020 from 1-2:00 PM ET

Contact RH-ISAC Director of Intelligence Operations Muktar Kelati at muktar.kelati@rhisac.org if you are interested in joining this briefing. 


This is a member-exclusive briefing. Eligible participants are cybersecurity practitioners from retailers, restaurants, hotels, gaming casinos, food retailers, consumer products and other consumer-facing companies. To learn more about becoming a member of RH-ISAC visit https://rhisac.org/membership/.