Enlarge (credit score: Getty Photographs)
After years of being outmaneuvered by snarky ransomware criminals who tease and brag about every new sufferer they declare, worldwide authorities lastly received their likelihood to show the tables, and so they aren’t squandering it.
The highest-notch trolling got here after authorities from the US, UK, and Europol took down many of the infrastructure belonging to LockBit, a ransomware syndicate that has extorted greater than $120 million from 1000’s of victims all over the world. On Tuesday, many of the websites LockBit makes use of to disgrace its victims for being hacked, stress them into paying, and brag of their hacking prowess started displaying content material asserting the takedown. The seized infrastructure additionally hosted decryptors victims might use to get well their knowledge.
The darkish web page LockBit as soon as used to call and disgrace victims, displaying entries comparable to “press releases,” “LB Backend Leaks,” and “LockbitSupp You have been banned from Lockbit 3.0.”
this_is_really_bad
Authorities didn’t use the seized name-and-shame web site solely for informational functions. One part that appeared prominently gloated over the extraordinary extent of the system entry investigators gained. A number of pictures indicated they’d management of /and so forth/shadow, a Linux file that shops cryptographically hashed passwords. This file, among the many most security-sensitive ones in Linux, will be accessed solely by a person with root, the very best degree of system privileges.
Learn 9 remaining paragraphs | Feedback
