One of the most popular attacks of recent years is ransomware, which can have devastating consequences for a business. And it seems that according to the latest trend, different groups hacking, have begun to join forces and make their attacks even more coordinated and dangerous. THE Positive Technologies posted one research on Wednesday studying this trend.
As in most cases, the malicious agents constantly evolving their techniques and attacks. Until recently, ransomware attacks simply locked the victim's systems and demanded ransom to allow them access again. But now the criminals have started threatening to publish stolen information on Internet if the victims refuse to pay the ransom they are asked to pay.
According to Positive Technologies, the teams Maze and Sodinokibi were the most active in the second quarter of the year in such attacks. The DoppelPaymer, NetWalker, How, Nephilim and Clop also deal with this type of attack. Some gangs, such as Ako, use a "double blackmail" system, demanding separate ransom for decryption and not publishing the data.
Many ransomware groups create special websites where the data they steal is leaked. Other groups post this information in forums hackers.
However, in a recent collaboration that was discovered, hacking teams collaborated with the Maze gang to publish stolen data. In particular, Maze uses its own data leakage website to publish information stolen from others Criminals, forming a business known as the Maze Cartel.
The NetWalker gang even hired partners to spread its ransomware by offering them a commission as payment.
Although this type of collaboration results in profit sharing between teams, they still make a lot of money. In June, the University of California, San Francisco was forced to pay $ 1,14 million after being attacked by NetWalker ransomware.
In May, the law firm Grubman Shire Meiselas & Sacks fell victim to the REVIL (Sodinokibi) ransomware gang. The criminals claimed to have sensitive data from famous customers of the company, such as Lady Gaga, Madonna, Mariah Carey, Nicki Minaj, Bruce Springsteen, Bette Midler and Jessica Simpson. After the company offered to pay just $ 365.000 of the $ 21 million requested, the group doubled its claims to $ 42 million.
This tactic seems to work and so more and more malicious agents are using it to make easy money.