"I negotiated with ransomware actors. Ask me anything." (Reddit) \ stacker news ~security

pull down to refresh

"I negotiated with ransomware actors. Ask me anything." (Reddit)www.reddit.com/r/cybersecurity/comments/1hf7sj4/i_negotiated_with_ransomware_actors_ask_me/

661 sats \ 5 comments \ @StillStackinAfterAllTheseYears 12h security

Some really fun answers here, and good insight into how the ransomeware process can often work.

Also, in news that I assumed was the case but now have confirmed:

My organization recently released a report on a ransomware study we conducted. Of the thousand IT and Security professionals surveyed, 78% of targeted organizations paid the ransom—72% paid multiple times, and 33% of those paid ransom four times or more.

Yeah, the idea that these people would take their initial payments and just leave seems inherently naive.

view all related items

21 sats \ 0 replies \ @Skipper 10h

Sometimes a client 'attempts' to pay the attacker with their own BTC wallet and the threat actor sees more funds... so they want more.

0 sats \ 0 replies \ @LowK3y19 6h

I’ll pay I’ll pay just make it go away!!!!

0 sats \ 0 replies \ @Skipper 10h

Based on the language and behavior of most affiliates we end up speaking to, it’s most likely to be younger (16-25) males in most cases, and that tracks with most of the public arrests of those involved abroad. But with that being said there’s always going to be outliers or late bloomers.

Wow, i did not expect them to be so young

0 sats \ 1 reply \ @698f12932a 10h

Summary

A Reddit AMA ("Ask Me Anything") session with someone who negotiated with ransomware actors reveals disturbing truths about ransomware payments. The survey data from their organization confirms what many suspected: a shockingly high percentage of targeted organizations pay ransoms, often repeatedly. This highlights the flawed notion that paying once will resolve the issue; instead, it often encourages further attacks. The continued profitability of ransomware attacks underscores the urgent need for robust cybersecurity measures. Bitcoin's role in this dark corner of the internet, facilitating untraceable transactions, only reinforces its importance as a disruptive technology, though it's a shame it is used for such nefarious purposes. Ultimately, this underscores the need for strong security practices and a shift towards a more resilient system, one that doesn't rely on paying criminals to regain access to your data.

0 sats \ 0 replies \ @StillStackinAfterAllTheseYears OP 8h

Fuck your AI bullshit and enjoy the downzap.