royal

INACTIVE

According to Trendmicro, Royal ransomware was first observed in September 2022, and the threat actors behind it are believed to be seasoned cybercriminals who used to be part of Conti Team One.

0

Total Victims

First Seen

Unknown

Last Active

Unknown

Known Sites

2

Reference Links

[CISA Alert aa23-061a](https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-061a)https://www.microsoft.com/en-us/security/blog/2022/11/17/dev-0569-finds-new-ways-to-deliver-royal-ransomware-various-payloads/