back to article Lorenz ransomware crew bungles blackmail blueprint by leaking two years of contacts

The Lorenz ransomware group leaked the details of every person who contacted it via its online contact form over the course of the last two years. A security researcher noticed Lorenz's dark web victim blog was leaking backend code, pulled the data from the site, and uploaded to it a public GitHub repository. The data …

  1. Dev_Fit

    This is an amazing own goal... I mean, a broken Apache server, really? Super embarrassing for these criminal losers - I love it

    1. Anonymous Coward
      Anonymous Coward

      Well it's going to VAR to check if it is actually an own goal........and they'll get the decision wrong.

      You can guess which team is popular in my household.

      1. The Oncoming Scorn Silver badge
        Pirate

        Double Whammy - Not Me But Someone I worked With

        Who got his personal details stolen from a site was bad enough...

        Who while reading the story on a news site & saw his name with address details as part of a screengrab by the reporter.

  2. Prst. V.Jeltz Silver badge

    Ethical?

    A security researcher noticed Lorenz's dark web victim blog was leaking backend code, pulled the data from the site, and uploaded to it a public GitHub repository.

    wow, talk about victim shaming!

    1. Kevin McMurtrie Silver badge

      Re: Ethical?

      It's not so clear if the victims paid ransoms to keep the gang funded.

      1. John Brown (no body) Silver badge

        Re: Ethical?

        Yeah,. pretty much the entire story seems to be "we know who tried to contact the gang". There's no juicy bits of useful info such as inter-gang comms or insider dirt, no scandal. Unless there's more to come, it's just a little bit of schadenfreude and not much else. I think I'm more disappointed than anything else.

    2. sanmigueelbeer

      Re: Ethical?

      Victim shaming would be going back to Lorenz with, "I got your data. Pay up or else."

  3. anonymous boring coward Silver badge

    "According to htmalgae, Lorenz closed access to its online contact form, preventing contact attempts using it, but the root issue "has not been addressed.""

    Don't friggin tell them!

  4. An_Old_Dog Silver badge
    Joke

    Executive Decision within Lorenz

    "We're too busy to run our web server. Just outsource it!"

    1. sev.monster Silver badge

      Re: Executive Decision within Lorenz

      I would not be surprised if Lorenz themselves were incompetent enough to have written this PHP. All the modern ransomware gangs that bother with it seem to be at least decent with social engineering, while merely Bogarting other groups' ransomware code. I don't believe they are anywhere as competent as many may think.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like