A new ransomware operation is using unusual techniques to breach networks and encrypt them with file-locking malware to hold victims to ransom.
Royal ransomware first appeared in September this year and is being distributed by multiple threat groups, but one is showing what Microsoft Security Threat Intelligence describes as "a pattern of continuous innovation" to distribute and hide payloads, often until it's too late and the victim has had their network encrypted.
The attacks, delivered in a variety of ways, are attributed to a group Microsoft tracks as DEV