CISA is aware of a recent successful cyberattack against an organization using a new #ransomware variant, which CISA refers to as FiveHands. Threat actors used publicly available penetration testing and exploitation tools, FiveHands ransomware, and SombRAT remote access trojan (RAT), to steal information, obfuscate files, and demand a ransom from the victim organization.

https://us-cert.cisa.gov/ncas/analysis-reports/ar21-126a