REvil customers complain ransomware gang uses backdoors to filch ransoms Security intelligence vendor Flashpoint claims to have found forum comments from customers of the REvil ransomware-as-a-service gang, and they’re not happy. The gang's malware may contain backdoors that REvil uses to restore encrypted files itself. REvil's modus operandi is to rent its malware to other evildoers, in return for …
If you can't trust scambag malware authors who can you trust these days?
Back in my day when Ronnie and Reggie were about, you could leave your door open all the time. Never mind that they were vicious, unfeeling shitbags with zero morals, they did love their Mum though!
The world is going to hell in a hand cart!
In the physical world if there is a serious dispute about revenue share or turf among organised crime types the result is a corpse discovered early in the morning by someone walking their dog (its always a dog-walker).
The fact that this is all online and presumably the participants are unknown to each other and quite possibly spread around different time zones should help to keep the body count down. One wonders what form an online turf war will take however.
I walk cats, a bit of training and they are fine with a body harness and lead (not just a collar, they wriggle out of those)
.. Neighbours have lost all their cats to traffic, my option less fun for cats than letting them roam, but hopefully they live longer this way
Of course there's a back door. I would be completely unsurprised if they're using it to snoop around all their partner networks, make sure they're not law enforcement. Whether they use it for anything else? Well, I suppose it depends whether you want to kill the goose that steals the cryptocurrency eggs, I suppose...
I expect they take ransoms from a few victims, telling the partners that those victims simply chose not to pay up. That way, they get more of the profit while still giving the partners a few successes to keep them working. Likely one partner noticed people decrypting after being informed that the victim didn't choose to pay.
Multiple "gangs" infect some of the same gang (to get the stats), then go on forum to say they themselves have been compromised by the malware the were distributing and all their bitcoins have been stolen. Thus sowing doubt amoung other crims.
Did I say gangs? I meant to say law inforcement agencies.
The Register 
Biting the hand that feeds IT
Copyright. All rights reserved © 1998–2024
