Saturday, September 24, 2022
HomeCyber SecurityUS presents reward “as much as $10 million” for details about the...

US presents reward “as much as $10 million” for details about the Conti gang – Bare Safety

You’ve virtually actually seen and heard the phrase Conti within the context of cybercrime.

Conti is the title of a widely known ransomware gang – extra exactly, what’s referred to as a ransomware-as-a-service (RaaS) gang, the place the ransomware code, and the blackmail calls for, and the receipt of extortion funds from determined victims are dealt with by a core workforce…

…whereas the assaults themselves are orchestrated by a loosely-knit “workforce” of associates who’re sometimes recruited not for his or her malware coding talents, however for his or her phishing, social engineering and community intrusion expertise.

Certainly, we all know precisely the kind of “expertise”, if that’s an appropriate phrase to make use of right here, that RaaS operators search for of their associates.

About two years in the past, the REvil ransomware gang put up a cool $1,000,000 as entrance cash in an underground hacker-recruiting discussion board, attempting to entice new associates to affix their cybercriminal capers.

Associates sometimes appear to earn about 70% of any blackmail cash that’s finally extorted by the gang from any victims they assault, which is a major incentive not solely to go in exhausting, however to go in broad and deep as properly, attacking and infecting total networks in a single go.

The attackers typically additionally select a intentionally troublesome time for the corporate they’re attacking, comparable to within the early hours of a weekend norning.

The extra utterly a sufferer’s community will get derailed and disrupted, the extra probably it’s that they’ll find yourself caught with paying to unlock their valuable information and get the enterprise working once more.

As REvil made clear once they spendtthat $1 million “advertising and marketing” funds on-line, the core RaaS crew was in search of:

   Groups that have already got expertise and expertise in penetration 
   testing, working with msf / cs / koadic, nas / tape, hyper-v 
   and analogues of the listed software program and units.

As you may think about, the REvil gang had a particular curiosity in applied sciences comparable to NAS (networked connected storage), backup tape and Hyper-V (Microsoft’s virtualisation platform) as a result of disrupting any current backups throughout an assault, and “unlocking” digital servers to allow them to be encrypted together with every thing else, makes it tougher than ever for victims to recuperate on their very own.

In case you endure a file-scrambling assault solely to find that the criminals trashed or encrypted all of your backups first, then your main path to self-recovery would possibly properly already be destroyed.



Please enter your comment!
Please enter your name here

Most Popular