Sign in / up

back to article This is a BlackCat you don't want crossing your path

Cybersecurity researchers with Cisco have outlined probable links between the BlackMatter/DarkSide ransomware ring responsible for last year's high-profile raid on the Colonial Pipeline, and an emerging ransomware-as-a-service product dubbed BlackCat. In a write-up this month, Cisco's Talos threat intelligence unit said a …

COMMENTS

Post your comment
House rules Send corrections
Add to 'My topics' unstar *
  1. The Man Who Fell To Earth Silver badge
    Black Helicopters

    One has to wonder

    One has to wonder how much longer the ransomware game will be viable now that Law Enforcement has figured out that blockchains are public trails that can be followed until the cybercurrancy has been converted into tangible goods or regular currency.

    0 0 Reply
    1. Clausewitz 4.0
      Reply Icon
      Devil

      Re: One has to wonder

      In my estimates, mix services converting Bitcoin to Monero + Ethereum will boom soon.

      You deposit Bitcoin and withdraw small payments of XMR and ETH.

      Then, difficult trails to follow.

      0 0 Reply
  2. Mike 137 Silver badge

    How?

    "local and domain user credentials were collected on some key systems by dumping the LSASS process memory and extracting the credentials with Microsoft Sysinternals Procdump and Dumpert"

    It would be very interesting to know what the initial attack vector was that allowed this.

    0 0 Reply

POST COMMENT House rules

Not a member of The Register? Create a new account here.

Forgotten password ?

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like