Reply to post:

Report shines light on REvil's depressingly simple tactics: Phishing, credential-stuffing RDP servers... the usual


Think positive, guys. Everyone is missing a golden opportunity at retribution.

It's a well-known fact that the Russian government only turns a blind eye to their hackers if they attack foreign targets.

How difficult can it be to use REvil's malware and delivery mechanism to execute a ransomware attack on Russia's state bank/power grid/hospital system etc?

Put the ransom money into REvil's bitcoin account, and let them enjoy it. Briefly.

Just for fun, it should be quite easy to spoof the originating address to be that of some random Russian server - perhaps in KGB headquarters.

Once they've traced it all back to REvil, there will be a few free Siberian holidays handed out.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon