![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
thewayneIt was a good week for cybersecurity people!
The first outfit was known as Trigona and was famous for ransom and reveal: pay up or your data is going to be published. They were infiltrated by a group that claims allegiance with Ukrainian. Over the course of several days, they copied all of the data from ten servers then trashed them and defaced their public web server. AND their infrastructure was hidden behind Onion networking! Some very good work done by the attackers. They say all the information is going to be handed over to the appropriate authorities.
The second outfit, Ragnar Locker, was taken down by Interpol and other authorities, raids were conducted in Spain, Czechia, and Latvia. Ragnar is a Ransomware As A Service operation, renting their software to other operations who attack companies then split proceeds with Ragnar. Arrests were made, servers were taken down.
https://arstechnica.com/security/2023/10/two-ransomware-gangs-knocked-out-of-commission-in-a-single-week/
The first outfit was known as Trigona and was famous for ransom and reveal: pay up or your data is going to be published. They were infiltrated by a group that claims allegiance with Ukrainian. Over the course of several days, they copied all of the data from ten servers then trashed them and defaced their public web server. AND their infrastructure was hidden behind Onion networking! Some very good work done by the attackers. They say all the information is going to be handed over to the appropriate authorities.
The second outfit, Ragnar Locker, was taken down by Interpol and other authorities, raids were conducted in Spain, Czechia, and Latvia. Ragnar is a Ransomware As A Service operation, renting their software to other operations who attack companies then split proceeds with Ragnar. Arrests were made, servers were taken down.
https://arstechnica.com/security/2023/10/two-ransomware-gangs-knocked-out-of-commission-in-a-single-week/
no subject
Date: 2023-10-21 11:44 pm (UTC)Hugs, Jon
Oh, yay!
Date: 2023-10-22 03:45 am (UTC)no subject
Date: 2023-10-22 05:07 pm (UTC)no subject
Date: 2023-10-24 06:38 pm (UTC)The ones outside of Russia sometimes get caught, and if they can't be caught directly, if they have bad operational security they can sometimes have their systems clobbered!
no subject
Date: 2023-10-24 05:56 pm (UTC)no subject
Date: 2023-10-24 06:47 pm (UTC)It'll be interesting to see what happens with Trigona. If the higher-ups were smart, they might have had backups. But they might also be in flight mode if they had information in those servers that leads to their RL identities and they're not inside Russian borders. But there's always more than enough maladjusted techies or wannabes to leap into the void.