Lord777
Professional
- Messages
- 2,577
- Reaction score
- 1,563
- Points
- 113
RansomedVC ransomware hack group (also known as Ransomed[.vc), which previously claimed attacks on Sony, the website of the Hawaii state government and the supplier of Colonial Pipeline, announced that it was stopping work. The hackers announced their decision because of the possible arrests of six members of the group.
The RansomedVC group appeared in August of this year, and initially hackers threatened European victim companies with fines for violating the security of the GDPR ("General Data Protection Regulation") in case of non-payment of a ransom for stolen data. At the same time, several companies listed on the hackers website stated that they had not been hacked at all.
In October 2023, representatives of the group unexpectedly announced that they were interested in selling their "business". In now-deleted messages on Telegram, a person calling himself the head of the hack group wrote that he sells ransomware builder RansomedVC, domain names, VPN access to 11 hacked companies, access to partner groups, social media channels, as well as 37 databases, whose total value allegedly exceeds 10 million US dollars..
After that, the account even offered a 20% discount, but it seems that no one was interested in the offer, since the last message appeared in the channel last week:
"During the investigation, I discovered that six people connected to me (may have) been arrested, so I'm stopping working. The profits we make are not worth ruining the lives of our partners. All 98 partners are now officially dismissed. We are sorry that the group did not work for long, but it so happened that some of the guys can not have a normal opsec, and I can't do anything about it, " the message read. — I made a good living with them, but using young kids aged ~20 is just wrong in my eyes, they will still end up in prison, but I don't want to continue supporting their stupidity. We have no regrets about our hacks or the extortion of our 'customers'."
The Record cites James Turgal, former executive assistant director of the FBI's Information Technology Division (CIO) and vice president of Optiv, who believes that some ransomware can sometimes actually sell their "business" and code, but RansomedVC is a different case.
"Are they selling businesses because the FBI or international law enforcement agencies are blocking their operations? Very rarely do criminal groups repent of their illegal actions and begin to feel remorse. The sale can be a ploy to find out if law enforcement will track their ads and understand how close they got," says Turgal.
The RansomedVC group appeared in August of this year, and initially hackers threatened European victim companies with fines for violating the security of the GDPR ("General Data Protection Regulation") in case of non-payment of a ransom for stolen data. At the same time, several companies listed on the hackers website stated that they had not been hacked at all.
In October 2023, representatives of the group unexpectedly announced that they were interested in selling their "business". In now-deleted messages on Telegram, a person calling himself the head of the hack group wrote that he sells ransomware builder RansomedVC, domain names, VPN access to 11 hacked companies, access to partner groups, social media channels, as well as 37 databases, whose total value allegedly exceeds 10 million US dollars..
After that, the account even offered a 20% discount, but it seems that no one was interested in the offer, since the last message appeared in the channel last week:
"During the investigation, I discovered that six people connected to me (may have) been arrested, so I'm stopping working. The profits we make are not worth ruining the lives of our partners. All 98 partners are now officially dismissed. We are sorry that the group did not work for long, but it so happened that some of the guys can not have a normal opsec, and I can't do anything about it, " the message read. — I made a good living with them, but using young kids aged ~20 is just wrong in my eyes, they will still end up in prison, but I don't want to continue supporting their stupidity. We have no regrets about our hacks or the extortion of our 'customers'."
The Record cites James Turgal, former executive assistant director of the FBI's Information Technology Division (CIO) and vice president of Optiv, who believes that some ransomware can sometimes actually sell their "business" and code, but RansomedVC is a different case.
"Are they selling businesses because the FBI or international law enforcement agencies are blocking their operations? Very rarely do criminal groups repent of their illegal actions and begin to feel remorse. The sale can be a ploy to find out if law enforcement will track their ads and understand how close they got," says Turgal.
