Connect with us

PressRelease

Hackers target Russian businesses with ransomware that was disclosed by Conti.

Published

on

Russian businesses with ransomware

Using the Conti ransomware’s stolen source code, a hacker gang produced their own ransomware to be used in cyberattacks on Russian companies.

We frequently hear about ransomware attacks that target businesses and encrypt data, but we hardly ever hear about assaults on Russian organisations.

This absence of assaults is a result of Russian hackers’ widespread conviction that if they do not target Russian targets, then the nation’s law enforcement will ignore attacks on other nations.

The situation has changed, though, since the hacker gang NB65 is now launching ransomware assaults on Russian firms.

Russian targets for ransomware

An organisation known as NB65 has been hacking Russian organisations for the last month, collecting their data, and exposing it online while claiming responsibility for the assaults on Russia’s invasion of Ukraine.

The document management company Tensor, the Russian space agency Roscosmos, and the state-owned Russian Television and Radio broadcaster VGTRK are among the Russian organisations that the hacking gang claims to have attacked.

The attack on VGTRK was particularly noteworthy since it is claimed that 786.2 GB of data, including 900,000 emails and 4,000 files, were stolen and then released on the DDoS Secrets website.

The NB65 hackers have lately adopted a new strategy and, since the end of March, have been targeting Russian enterprises with ransomware assaults.

This is made even more intriguing by the fact that the hacker organisation used the Conti Ransomware operation’s stolen source code to construct their own ransomware. Conti is a group of Russian threat actors that forbid their members from assaulting targets in Russia.

A security researcher released 170,000 internal chat conversations and the source code for Conti’s operation after they cooperated with Russia in the war on Ukraine.

Threat researcher Tom Malka originally alerted BleepingComputer to NB65’s activities, but we were unable to locate a ransomware sample, and the hacker collective was unable to offer one either.

But yesterday, a sample of the modified Conti ransomware executable used by the NB65 was released to VirusTotal, giving us a look at how it operates.

This sample is recognised as Conti by almost all antivirus vendors on VirusTotal, and Intezer Analyze found that it shares 66% of the code with other Conti ransomware strains.

The ransomware developed by NB65 would attach the while encrypting files, according to a test by BleepingComputer. The names of the encrypted files have an NB65 extension.

Throughout the encrypted device, the ransomware will also produce ransom notes with the filename R3ADM3.txt. The threat actors will blame President Vladimir Putin for invading Ukraine for the attacks.

“We keep a careful eye on everything. War crimes should not have been committed by your president. Look no farther than Vladimir Putin for someone to blame for your current condition “reads the ransomware message for NB65 that is seen below.

In order to prevent previous decryptors from functioning, the NB65 hacker gang adjusted its encryptor for each victim based on the initial Conti source code leak, according to a spokesperson who spoke to BleepingComputer.

“It has been changed such that no decryptor created by Conti will function. A random key is generated for each deployment depending on a few variables that we alter for each target, “According to NB65, BleepingComputer.

Without speaking to us, there is truly no way to decode.

NB65 informed us that they did not anticipate hearing from their victims at this time because they had not received any correspondence from them.

Continue Reading
Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

20 + 8 =

PressRelease

What is faze save kidshaywarddecrypt?

Published

on

By

faze save kidshaywarddecrypt

“Faze Save Kidshaywarddecrypt” likely refers to a meme or joke within the gaming community.

Esports faze save

“Faze Clan” is a professional esports and entertainment organization, primarily known for their presence in the Call of Duty and Counter-Strike: Global Offensive scenes. “Faze Save” could refer to a clutch play or a significant moment in a match where a player from the Faze Clan saved the round for their team. However, without more context, it’s difficult to determine the specific meaning of “Faze Save.”

Several players of the popular esports FaZe clan were suspended recently for promoting a controversial cryptocurrency called Save The Kids. Save The Kids was advertised as an alternative to Dogecoin and Etherium, and it promised to donate a portion of the proceeds to a charity. The controversy caused a huge backlash from fans, who slammed the clan for its shady business practices.

The members of FaZe Clan have denied being involved with the scheme, but anyone found to be involved in the scheme could face serious consequences. FaZe Clan’s reputation could be ruined, and potential sponsors could be discouraged from working with the group.

Faze clan save

“Faze Clan Save” could refer to a clutch play or a significant moment in a match where a player from the Faze Clan saved the round for their team. It might be used to describe a play that was critical to the outcome of a match and helped secure a win for Faze Clan.

faze save the kids

“Save the Kids” is a phrase that has become popular in internet culture and is often used as a hashtag or meme. The exact meaning of “Save the Kids” varies depending on the context, but it generally refers to a call to action or a show of support for a cause, often related to children’s rights, safety, or well-being.

In the context of “Faze Save the Kids”, it’s possible that it is a reference to the Faze Clan supporting the “Save the Kids” cause or using the phrase as a rallying cry within the gaming community. However, without more context, it is difficult to determine the exact meaning.

Continue Reading

PressRelease

Sources:On Monday, Facebook will reveal a range of music products, such as a Clubhouse-like app, a podcast discovery service integrated with Spotify, and more. (Vox, Peter Kafka)

Published

on

sources monday spotifykafkavox

Sources:On Monday, Facebook will reveal a range of music products, such as a Clubhouse-like app, a podcast discovery service integrated with Spotify, and more. (Vox, Peter Kafka)

Peter Kafka / Vox:

Several audio products, including a Clubhouse-like app, a podcast finding service integrated with Spotify, and more, will be unveiled by Facebook on Monday, according to sources. On Monday, there will be announcements, although some things won’t be available for some time. — Facebook wants you to start communicating with others on the site.

Continue Reading

PressRelease

ByteDance’s founder Zhang Yiming steps down as Executive Chairman

Published

on

Zhang Yiming
The founder of TikTok’s parent company ByteDance founder Zhang Yiming has stepped down as chairman after announcing last May he was resigning as CEO and moving into a strategy role. New CEO Liang Rubo has taken over as chairman of the company’s board. The news comes shortly after the company announced a major organisational reshuffle at ByteDance to create six separate business units.
Continue Reading

Trending