Hybrid Analyst
Published in

Hybrid Analyst

The Battle Between Ransomware, Researchers, and anti-virus Companies looking for attention

The Colonial pipeline ransomware hackers had a secret weapon: self-promoting cybersecurity firms — MIT Technology Review, Renee Dudley and Daniel Golden, 5/25/2021

This was a really good article on how DarkSide, the cybercrime group behind the Colonial pipeline ransomware attack, was almost stopped by security researchers a few months earlier. However, when security company BitFender publicized DarkSide’s mistake — reusing their RSA keys to encrypt seized files — security researchers lost their advantage. Once DarkSide found out about BitDefender’s discovery, they changed their procedures and changed their keys.

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Michael Lortz

Writer. Analyst. Instructor. Sometimes serious. Sometimes creative. Just a simple man trying to make his way in the universe.