Inside Conti leaks: The Panama Papers of ransomware – The Record by Recorded Future
The leaking of more than a hundred thousand internal chats at the world’s biggest ransomware gang has offered explosive insights into how it attacks its victims which include Australian companies.
On February 25 Conti announced “Full support of the Russian government” in the war against Ukraine. It took only two days for internal chat sessions to be leaked onto the internet, with the likely source being a Ukrainian supporter within the Conti cybercriminal group.
Reports of more than 160,000 internal messages, along with source code for the Conti ransomware encryptor, decryptor and builder have found their way online.
Conti has reportedly compromised at least 500 orgnainsations globally.
The cybercriminal gang is renowned for its two-stage attack, using a ‘double extortion’ technique where it steals company data and threatens to sell it to extort a payment. It then encrypts data on victims’ systems and demands a ransom.
Cybersecurity insurance firms are engaging negotiators to reduce the amount of ransom to be paid, reach a resolution between companies and ransomware vendors, and identify digital evidence for law enforcement.
Protect your organisation from the threat of ransomware and cyber attack with Acurus. Contact us today.