슬픔에 잠긴 랜섬웨어, 희생자 파괴 위협’ 협상가에게 의존하는 경우 데이터

헬가 스미스구월 18, 2021마지막 업데이트: 구월 18, 2021
54 1 분 읽기

The cybercriminals behind the ransomware Grief said that if the victims hired an intermediary firm specializing in negotiating with the ransomware, their data would be destroyed.

More recently, there was evidence that the developers of Ragnar Locker threaten 에게 “leakthe data of the victims to the network if they contact the FBI, police or private investigators. The threat also extends to those victims who turn to data recovery specialists. Following this warning last week, Ragnar Locker operators have already released all the details of one of their victims, as the affected company has hired a negotiator.

The fact is that extortionists really do not like it when professional negotiators and law enforcement agencies are involved in the case. 아무튼, all this can lead to a decrease in profits, as well as delays and an increase in the time during which the victim responds to the incident.

지금 고통 (aka Pay or Grief) malware operators have resorted to similar threats. The hackers posted a warning on their website, which states that all data of the victim will be deleted if she contacts intermediaries.

The hackers posted a warning

We want to play a game. If we see a professional Data Recovery Company™ negotiator, we will simply destroy [your] 데이터. Data Recovery™ companies, as we mentioned above, get paid anyway. The Data Recovery Companies™ strategy is not to pay the requested amount and not to solve the case, but to slow down [the whole process]. 그래서, we have nothing to lose in this case. Just a time saver for all parties involved. What will the Data Recovery Company™ earn if the ransom amount is not set and the data is simply destroyed with zero chances of recovery? We think millions of dollars. Clients will bring them money just like that.the hackers write.
블 리핑 컴퓨터 notes that with these statements, Grief not only wants to put pressure on its victims, but also to evade US sanctions. The fact is that Grief has long been associated with the Russian-speaking hacker group 이블 코퍼레이션, against which the US government has imposed sanctions. 그건, by prohibiting victims from hiring specialists who negotiate the ransom, hackers hope that the victims will not learn about the risks associated with the sanctions, and still pay the required amount.

신고했음을 알려드립니다. DoppelPaymer ransomware is renamed to Grief.

태그
헬가 스미스구월 18, 2021마지막 업데이트: 구월 18, 2021
54 1 분 읽기

헬가 스미스

저는 항상 컴퓨터 과학에 관심이있었습니다, 특히 데이터 보안 및 테마, 요즘은 "데이터 과학", 10 대 초반부터. 편집장으로 바이러스 제거 팀에 오기 전, 저는 여러 회사에서 사이버 보안 전문가로 일했습니다., 아마존 계약자 중 한 명 포함. 또 다른 경험: 나는 Arden과 Reading 대학에서 가르치고 있습니다..

회신을 남겨주

이 사이트는 스팸을 줄이기 위해 Akismet 플러그를 사용. 귀하의 코멘트 데이터가 처리되는 방법 알아보기.

맨 위로 버튼