The researcher added: "Today, there's no comprehensive public data on the total number of ransomware payments. "And it's crowdsourced, so anyone can submit reports of ransomware they've been infected with or otherwise observed. It's public, so anyone can view and download the data," Cable wrote on Twitter. "Ransomwhere aims to fill that gap by tracking bitcoin transactions associated with ransomware groups. Independent EffortĬable says he created Ransomwhere on his own it's not connected with his employer, Krebs Stamos Group. The numbers loaded so far represent a preliminary sampling of ransoms paid, based on information gathered from victims and cybersecurity pros and tracked in publicly viewable bitcoin transactions, Cable says. As of Monday, it listed more than $60 million in ransoms paid in 2,500 incidents dating back to 2015. Jack Cable, a security architect at the Krebs Stamos Group, announced the site Thursday. See Also: Don't Let Ransomware Take You Down: A Protection Guide REvil said that its malware affected around one million systems.The new Ransomwhere site attempts to compare ransoms gained by various ransomware gangs.Ī white-hat hacker has created a crowdsourced website, Ransomwhere, dedicated to tracking payments made to ransomware gangs to help create a better understanding of the cybercriminal ecosystem. However, Kaseya provides software to service providers, which provide IT services to other companies resulting in the higher number of affected firms. ![]() The company said that fewer than 40 of its clients were affected. The attack initially targeted Kaseya, an IT firm based in the U.S. “It’s nothing more than a business,” the rep said. However, the representative did not express remorse when the attack closed hundreds of Coop supermarkets in Sweden. The REvil representative described disruption in classes as an accident. “For all of their big talk on their blog, I think this got way out of hand,” Liska said.Įleven schools and several kindergartens in New Zealand were affected by the attack. The operator said that the price is unchanged at $70 million but added that “we are always ready to negotiate.”Īllan Liska of cybersecurity firm Recorded Future opined that the group might have bitten off more than they could chew by encrypting so much data at once. Reuters was able to log on to the portal and chat with an operator. ![]() “It makes you wonder if they’re having a hard time getting people to pay,” he said. Jack Cable said that he was able to get in touch with the group after obtaining a cryptographic key needed to log on to REvil’s payment portal. An affiliate of the REvil group told Krebs Stamos Group’s Jack Cable that he is now selling the universal decryptor for $50 million. However, the hacker group appears to have recently lowered its demand, according to CNBC. This decryptor will unlock all files that were affected by the ransomware attack, which targeted businesses across a dozen countries. The ransomware group initially demanded $70 million in Bitcoin (BTC) in exchange for a “universal decryptor,” according to BBC. The Russian group was behind the massive ransomware attack on Friday which affected at least 200 U.S. The REvil group has lowered its demand to $50 million in Bitcoin (BTC).
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |