GoGalocker first appeared in January 2019 and has been used in attacks against organizations in a wide range of business sectors. While the U.S. has been the worst affected, a large number of organizations in Scandinavia have also been hit with attacks. For more details on this threat, see the “In depth: GoGalocker” section. MegaCortex is one of the newest targeted threats to begin operating, first appearing in May 2019, when it was used against 11 organizations. The malware has some similarities to GoGalocker, indicating that they may have common authorship. While it is possible the two groups of attackers are linked, it may also be the case that the ransomware was developed by the same third-party developer for both groups. For more details on this threat, see the “Spotlight: MegaCortex” section.