Several days ago, as a result of a disagreement about the fair distribution of ransomware proceeds of crime within the Conti cybercriminal fraternity, one of the group’s affiliates publicised close to 60 files containing manuals and resources for Conti ransomware operators.
This information dump provides a unique insider glimpse into how ransomware groups function, how they go about picking their targets, what methods they use, what resources they share and what defenders can look out for when trying to stop an intrusion.
There probably isn’t that much of new content here, as some of the techniques and software have been used by cybercriminals for a while. Yet it’s pretty rare to witness a complete information dump such as this, originating from within the actual ransomware operator community.
NOTE: The original documents are all in Russian – any discrepancies or inaccuracies that might arise result from my own translatory shortcomings.
Does it make sense to tou, their rationalw for advising against “Disabling webrtc, Javascript and Flash” and “using Kali Linux”?
Seems like privacy overkill / extreme paranoia?
PC names match Six Disciplines employees in Toledo, Ohio
https://data-lead.com/person/name/Corey+Leichty/id/187183015/v/6922a
Lol, I bet these guys are now panicking! Bad OpSec.