From zdnet.com
A newly uncovered form of ransomware is going after Windows and Linux systems in what appears to be a targeted campaign.
Named Tycoon after references in the code, this ransomware has been active since December 2019 and looks to be the work of cyber criminals who are highly selective in their targeting. The malware also uses an uncommon deployment technique that helps stay hidden on compromised networks.
The main targets of Tycoon are organisations in the education and software industries.