Rebranding and restructuring their operations allowed some ransomware syndicates to strengthen anonymity amid Western sanctions.
To strengthen their anonymity through alterations in on-chain behavior, two major ransomware syndicates, LockBit and Conti, restructured their activities.Through TRM’s on-chain analysis, open source reporting, and proprietary information, the intelligence firm discovered that Conti ceased its original operation and restructured into three smaller groups named Black Basta, BlackByte, and Karakut. Before the diversification, Karakut was a side project run by Conti operators.
LockBit, on the other hand, rebranded its operations since Ukraine’s invasion last February. Four months later, the syndicate launched LockBit 3.0, which it projected as apolitical and focused on monetary gain. “LockBit’s claim that it had no intention to purposely attack Western countries may have been motivated by the possibility of Western sanctions against Russian entities. Moreover, LockBit stated that it had prohibited attacks against entities related to critical infrastructure, probably to minimize the risk of law enforcement attention and potential sanctions,” TRM said.significant growth
in the usage of Russian-speaking darknet markets. Due to sanctions imposed on DNMs, criminals fled to Russian-related platforms to evade Western law enforcement. Collectively, Russian-speaking darknet markets recorded several periods of sustained growth between April-July and October-December 2022. By the end of the year, they had amassed over $130 million in sales.
日本 最新ニュース, 日本 見出し
Similar News:他のニュース ソースから収集した、これに似たニュース記事を読むこともできます。
Russian banks say debit cards might stop working due to Western sanctionsRussian banks are warning debit card holders that new sanctions from the US and UK could mean their cards stop working abroad.
続きを読む »
Russian tank destroyed in Ukraine is put on display outside Russian embassy in GermanyActivists in Berlin, Germany have parked a Russian tank destroyed in Ukraine outside its embassy there on the one-year anniversary of the conflict.
続きを読む »
Los Angeles school district reveals ransomware gang leaked thousands of student health records onlineThe Los Angeles Unified School District revealed Wednesday that the a ransomware gang leaked sensitive records of more than 2,000 students online.
続きを読む »
Ransomware part of attack that compromised 2,000 LA student records, including COVID status, school district daysLOS ANGELES — A ransomware attack and data leak in September 2022 compromised assessment records, driver's license numbers, as well as Social Security numbers of approximately 2,000 students, including 60 who are currently enrolled, the Los Angeles Unified School District confirmed to ABC News Friday.
続きを読む »