Skip to main content

#StopRansomware: Royal Ransomware Advisory

Friday, March 03, 2023

Royal ransomware attacks have spread across numerous critical infrastructure sectors including, but not limited to, manufacturing, communications, health care and public health care (HPH) and education.

As a result of these attacks, the Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) released a joint Cybersecurity Advisory (CSA) #StopRansomware: Royal Ransomware on Thursday, March 2, to provide network defenders tactics, techniques and procedures (TTPs) and indicators of compromise (IOCs) associated with Royal ransomware variants. FBI investigations identified these TTPs and IOCs as recently as January 2023.

CISA recommendations:

Review the CSA for the full technical details. Additionally, visit for additional guidance on ransomware protection, detection and response.

Last Modified on Mar 03, 2023
Back to Top