Cloned Boy
Professional
- Messages
- 1,158
- Reaction score
- 881
- Points
- 113
Famous carder Sergey Pavlovich continues his conversation with employees of Group-IB, the main Russian private fighter against hackers, carders and other cybercriminals, and in the eighteenth episode of the series we met in the company's office to see everything live, and we talk with Sergey Nikitin, who flew to Singapore.
Enjoy reading!
Contents:
Which department of the company do you consider the most important?
Pavlovich:
Listen, we have already visited a lot of your departments, right? Can we say that there is one that is the most important, without which everything will stop?
Specialist:
Well, I think that at different times, yes, at different times of the stages of the company's development, these departments are actually different. Historically, I talked about the fact that the laboratory, since we are constantly on the front lines, we always find undetectable viruses that give 0.71, one, to the virus total. We are always in live incidents, we are always collecting samples, data, etc. We were such a driver for all our other departments and products.
With the help of our investigation data, people were found, with the help of our data we enriched our Threat Intelligence, a database of indicators, data on how cybercriminals operate, which we sell as a service. Again, all our products start detecting and doing all sorts of things because of what we collect, but again, let's say, the incidents themselves are changing, the amount of data that can be collected from each incident is changing,
now for sure, that is, I am absolutely sure that our products are much more important, our developers, they are also very different, yes, that is, high-load systems, there is low-level programming for agents and sandboxes. A huge amount of all sorts of work for the company. Probably, now development is more important. For example, this year we are strategically engaged in very strong marketing.
That is, we need to raise the level of our materials, our reports, articles, website and so on. An excellent report on ransomware for the last year. It looks nice, it is nice to hold it in your hands, read it, there may just be something cool, interesting.
Pavlovich:
It is not translated into Russian, right?
Specialist:
No, we have both, but now our priority is international, so everything is published in English, and if necessary, we will translate it into Russian. That is why I say that every year some most important department changes. This is a completely normal story. Here, our synergies, rather, this is what is important, when we exchange data. And thanks to this exchange, new departments, new products, and so on are born.
Is the importance of the CERT department increasing at the moment?
Pavlovich:
And the last department I was in, CERT, right? That is, they respond to some threats. Can we say that right now the importance of CERT is increasing, growing every day? They are always important.
Specialist:
The thing is, it's a department, you know, like, our service is probably quiet and unnoticeable there, yes, but it's very important. Because, firstly, it's accredited to remove fraudulent phishing and malicious sites in the RU zone. That is, we are accredited by the RUNETA accreditation center, and for RU, RF and SU domains we can identify such domains, delegate them, delete them, block them, and this is also social assistance, I mean society as a whole, because in the RU zone we respond and delete a bunch of scams, just the most diverse ones, preparations for phishing, just distributors of malware.
If it is located in the RU zone, it is found, it is deleted within a few hours.
Direct line of the CERT department
Specialist:
And what I will note here is that CERT also has a hotline, someone regularly calls us, and the guys talk to people, and they regularly receive all sorts of calls, including threats, because they deleted or blocked someone's domain, and the person did not even know that his site had been hacked a long time ago, and all sorts of things are being broadcast from it, and he thinks that we just blocked it. Of
course, this burns a lot of people. Plus, these guys, they monitor the products that our clients have. We do not sell them just as boxes, like we installed them for you and you can have fun with them yourself. Are these some kind of antiviruses? These are network sensors, these are malware detonation systems, that is, to analyze incoming mail. What is it called, a testing ground?
Pavlovich:
Yes, a testing ground, a testing ground.
Specialist:
So that they open all the attachments and see what happens. Here, these are our agents that are installed directly on computers, handpoints. Here, this is a system that collects data from all these sensors. This is called a handbox. And these guys, counting, monitor all these handboxes that are installed at clients’ places. And they see where there are illegal events, well, false positives, where you really need to strain yourself. They monitor this 24/7, that is, they work in shifts, really, without days off, without holidays, without anything. There is always someone there. And they notify our clients that, like, look, you have a problem.
And this is a big plus, because not every company can afford a security guard. And also a security guard who will monitor 24/7. This should be at least three employees to work for 8 hours. But this is generally unrealistic. We take on this function, which greatly increases the client’s security.
Because there were a lot of attacks like that, on Friday evenings, so that no one would know for sure the whole weekend, and on Monday we were already faced with the consequences. That's why SERD performs a lot of functions, they are definitely important, plus there are a lot of people working there, you saw that there is only part of the shift, at 9 o'clock there will be a shift change, new people will come and so on,
and this is just such a constant story, this is also a constant finger on the pulse, a little differently, that is, without departures, explosions, doors and so on, but definitely also interesting, cool work.
The influence of Group-IB on Telegram and YouTube
Pavlovich:
And you do not have influence on Telegram, on YouTube, for example?
Specialist:
There are different agreements with different platforms, including on anti-piracy, for example, yes, to delete and block pirated content, there is phishing, malware and so on.
Somewhere there are rights, for example, of some moderator, but not that we can delete everything ourselves, but to quickly send some materials to technical support so that it goes through a separate queue of consideration, well, because we have the competencies, it is clear that we will not just narrow all this down there. Well, yes, that is, different platforms have different methods of interaction, of course, with Russian ones it is simpler, there is VKontakte, yes, with Telegram it is also possible, and with some foreign ones it is more difficult, well, but regularly, in general, something is being finalized, finished.
Pavlovich:
I have questions about Telegram. I will make some kind of bot resource there or someone else will clone it right there, call it something similar to me and start scamming people. I just can’t even imagine how to sign up. I don’t know at all how to fight this, with Telegram.
Specialist:
Listen, I can’t tell you, but this very thing, you can just ask Sasha Kalinin. He probably knows, that is, that Telegram is definitely monitored, all sorts of things are tracked there, all sorts of death groups, we have helped a lot of people with that, I have already told you, with investigations and some kind of early blocking, so I think that we can find out from Sasha how and what can be done.
Is there a company honor board?
Pavlovich:
That was Kalinin, who was in the heart, right? And is there, you know, like at McDonald's, they have some kind of honor board, like, I don't know, employee of the month, do you have that?
Specialist:
We regularly have some kind of revenue competitions between sellers, and among techies we have various achievements for all sorts of special projects, there are special badges, bonuses, mentions at our operational events, plus a bunch of thanks for what we have already filmed, and there is not so much an honor board, but rather how we live, how we have fun, a whole wall, yes, about life in the IBI group, let's go and film this story.
Here, well, right here in a frame a specific photo of the employee of the month, no, there is no such thing, because we have too many cool guys working for us, stars, and this always radiates glory. Well, and another plus for the team, different departments interact with each other. Yes, synergy, it is very developed, that is, we regularly come up with something, interact, finish, improve, this is encouraged in every possible way.
What is the most important thing in the development of the company?
Pavlovich:
And what do you think, this is a purely business question, what do you think is the most important, I don’t know, in the development of the company, can you single out some factors?
Specialist:
I am absolutely sure that the most important thing is to believe in what you do. That is, if a company slides into a corporation that just makes money, it becomes faceless and uninteresting. Absolutely any business, any undertaking, it works great, great, when there is such a driver who believes in all this, in the mission, and he gathers like-minded people around him who continue to do all this together.
And when it is not just a job, it is not a means of making money and so on, and money is a means for reinvestment, development and so on. Well, I have already said many times about our mission, that it is to protect cyberspace, our clients, to fight crime. Ilya Sochkov, in fact, is just such a leader, who is charismatic, he gets everyone going, he inspires everyone, he unites everyone around himself, and he does
all this not only for the sake of….
Pavlovich:
Your ship.
Specialist:
Yes, on the ship not only, absolutely not only for the sake of money, yes, not just to become some kind of billion-dollar company, go public and forget about all this. No, it is always a huge social burden, helping everyone, and that is why we try to be apolitical, yes, because evil is everywhere, and good should be everywhere, too, and we need to save clients and people in absolutely all countries, and we need to help everywhere, and we need to fight fraud everywhere.
And we have already talked about all crimes, one way or another, hitting the most vulnerable layers of the population. And unfortunately, there are no super-Robin Hoods among criminals. Crimes are crimes, someone will definitely lose money, health, and anything else. Nerves, life can be ruined, anything.
Are there any motivational programs for the company's employees?
Pavlovich:
Do you have options in the form of participation in the company for top managers, for example?
Specialist:
Such programs are very different, motivational. They are worked out regularly, launched, done, that is, to varying degrees, different employees are involved in motivation in different ways, and now one of the next motivational programs is being launched, so there are very different options, but here you just need to work. But auctions, I mean, for a share in the company.
Yes, this is also possible, yes, Ilyan called it in one of the interviews, that like someone is included in the cost of the company or something like that, yes, such options also exist and here the question is that you need to work for some time before different companies will be like over time a person will be involved in them of course we are most interested in long-term cooperation plus we have incredible opportunities for horizontal vertical growth, something between the sub Well, you can move, for example, from a serta to a lab, from a lab to an investigation, and then become, there, the head of investigations.
For example, Roma Rezukhin, who was in the interview, he worked in cyber intelligence, moved to the lab. Now he is the deputy head of malware research, yes. There, for example, Vesta Matveeva worked for us in the lab, she moved to investigation, then moved to Singapore. She is the head of investigation in the region in this, yes, that is, the Head of Investigation.
Therefore, there are many, many options for movement, of course, this requires an overload from a person, that is, he needs to do his job, desire and so on and so forth, but, yes, such examples exist, they are not unique, I am constantly agitating everyone, do it, give in, we are now launching a large program about locations in new offices, yes, we are opening an office in the Middle East, there are a large number of new locations that will open there, where you can move, we will move developers, programmers, so here it is necessary ...
Therefore, learn English, at least. Learn English, come work for us, there are a lot of interesting vacancies, it's always great.
Do you provide protection to bookmakers?
Pavlovich:
Are there bookmakers among your clients, what do you provide them with protection from, for example, casinos, bookmakers?
Specialist:
Listen, as far as I remember, we have a list of businesses that we don't really work with, but if these are legal bookmakers that are licensed there, yes, they work legally in Russia, then, in my opinion, we help them. Basically, yes, this is all kinds of protection from scams, anti-phishing, something like that, but I don't remember any specific cases of laboratories, but there were cases when, for example, we worked with the ATO desk, this is a public story, we carried out all sorts of checks there.
People still write comments under your videos, why are you inviting him, he got into trouble with the ATO. Yes, yes, yes, that is, we simply conducted an audit there, that's it. But did they go well? They went well, in fact, there is no fraud there, it's just open information, it's enough to look at how much a ticket costs, what ticket circulation there is and what circulation is being raffled off. And it turns out that, roughly speaking, only half of the amount sold is being raffled off.
And let's say, if the circulation there is 5 billion rubles, and they raffled off 2.5, the profit is incredible. Why deceive anyone? There is no point in doing deceptions, some kind of splicing, insertions Well, what all sorts of conspiracy theorists talk about There really are drawings on record and so on But just once again, this is open information We have a law on this gambling thing It is clear that they transfer some number from this percentage to the Ministry of Sports, in my opinion
Yes, it is somehow interesting that this is a sport, like Here, like sport lotto and so on And they raffle off some part Naturally, there are costs for printing and so on, but a huge number of them have a clean profile, absolutely legal, white. Why deceive someone, there is simply no point in it here.
Pavlovich:
But there was just a case about two years ago that almost a relative of this one won there.
Specialist:
Affiliation, yes, some other things. But I am simply explaining that here it is simply Volkom's Brit, yes.
Pavlovich:
But this is no longer some kind of technical issue, but if it took place, yes, there, but fraud, there, let's say, well, of a traditional kind, but not related to IT.
Specialist:
Yes, and so this year we were invited, first of all, to check the voting, like the show "The Voice". There was a vote on how to distribute the prizes. We checked the voting itself on the website, the distribution database. Everything was fine there. And they asked to check the drawing itself during the draw, that the verification of these numbers, it could not be done. And indeed, it cannot be done, because there was an isolated network, and all this happened offline. That is, they received the draw and were already working with it, having disconnected everything from the network.
There is such a story, we selectively checked a bunch of tickets and they passed this audit, which we even announced live on air, told. Super, there is no disgrace. But it is funny, of course, to perform on January 1.
Pavlovich:
Yes, you were still in a smock. It felt like you were a little out of place.
Specialist:
Absolutely out of place, because before that Baskov was sitting there with me, he was telling me funny stories, because we went out together, he was telling me that it was really bad that he arrived so early for the shoot, it was hard, look, they were grammaring him en masse, look, it was hard for him.
The theft of Apple blueprints. What did it lead to?
Pavlovich:
Well, and the last question about the recent incident with the theft of drawings from Apple. Did it really happen and what did it lead to?
Specialist:
Yes, by the way, this is an excellent example, again, of encryption viruses, which after hacking they steal, that is, after hacking they steal data, and only then encrypt everything, we have already talked about this. And here, just as we know, Kvanta Computer is a contractor for Apple, they themselves do not assemble anything, yes, that is, they make designs, print processors, NTN SMS, they assemble them, various Gippiga Tron, and here, among other things, Kvanta Kvanta was responsible for iPad, for Apple Watch, because of MacBook, that is, there is a
certain list of products, so Kvanta was broken, according to rumors, according to rumors, their conveyor even stopped because of the encryption of this, and they really stole the drawings that Apple sent them, new MacBooks that have not yet been announced, where, by the way, they will return the HDMI port, SD cards, there are many interesting things that have come out of this. MagSafe. MagSafe, yes, yes, yes. And they actually tried to blackmail Apple, but it wasn't Apple that was hacked, yes, and therefore nothing really serious was stolen there.
The drawings for assembly, well, like, this product will be released anyway, yes, of course, there may be some losses, that it appeared before the announcement, but it's okay.
Pavlovich:
Oh, well, a competitor, I think everyone in this world has enough money, I don't think that tomorrow AMD will do something based on their stolen drawings...
Specialist:
And who needs MacBook drawings, yes, it's just, rather, for users, interest, what to expect. If Apple itself had been hacked, some developments stolen, that would have been a different story. And this is an assembler, a contractor in Taiwan, well, it's clear that they have bad security, so, naturally, Apple didn't even think about paying for This is exclusively a quantum problem. Perhaps, after this, Apple will force them to strengthen their information security, or refuse altogether, or how will they force them, they, that is, Apple are tough guys, they can dictate terms to anyone very harshly, and I don’t know what will happen to the unfortunate quantum, but that’s why what was called the hack of Apple is in fact the hack of a Taiwanese contractor, and it poses absolutely no threat to anyone, but, again, this shows that encryptors do not give,
they are also ready to trade in stolen information, and that I am afraid that the losses from a simple conveyor, if this is true, because these are rumors, are much greater, there are hundreds of millions, that is, not hundreds, probably several tens of millions of dollars they lost, than the ransom amount or any damage from the encryption itself.
Epilogue
Pavlovich:
That’s it, thank you for the great tour. Have a good trip this time. Write comments, ask questions. Hugs, bye.
Enjoy reading!
Contents:
- Which department of the company do you consider the most important?
- Is the importance of the CERT department increasing at this time?
- CERT Department Hotline
- Group-IB's influence on Telegram and YouTube
- Is there a company honor board?
- What is the most important thing in the development of a company?
- Are there any motivational programs for the company's employees?
- Do you provide protection to bookmakers?
- Theft of Apple blueprints. What happened?
- Epilogue
Which department of the company do you consider the most important?
Pavlovich:
Listen, we have already visited a lot of your departments, right? Can we say that there is one that is the most important, without which everything will stop?
Specialist:
Well, I think that at different times, yes, at different times of the stages of the company's development, these departments are actually different. Historically, I talked about the fact that the laboratory, since we are constantly on the front lines, we always find undetectable viruses that give 0.71, one, to the virus total. We are always in live incidents, we are always collecting samples, data, etc. We were such a driver for all our other departments and products.
With the help of our investigation data, people were found, with the help of our data we enriched our Threat Intelligence, a database of indicators, data on how cybercriminals operate, which we sell as a service. Again, all our products start detecting and doing all sorts of things because of what we collect, but again, let's say, the incidents themselves are changing, the amount of data that can be collected from each incident is changing,
now for sure, that is, I am absolutely sure that our products are much more important, our developers, they are also very different, yes, that is, high-load systems, there is low-level programming for agents and sandboxes. A huge amount of all sorts of work for the company. Probably, now development is more important. For example, this year we are strategically engaged in very strong marketing.
That is, we need to raise the level of our materials, our reports, articles, website and so on. An excellent report on ransomware for the last year. It looks nice, it is nice to hold it in your hands, read it, there may just be something cool, interesting.
Pavlovich:
It is not translated into Russian, right?
Specialist:
No, we have both, but now our priority is international, so everything is published in English, and if necessary, we will translate it into Russian. That is why I say that every year some most important department changes. This is a completely normal story. Here, our synergies, rather, this is what is important, when we exchange data. And thanks to this exchange, new departments, new products, and so on are born.
Is the importance of the CERT department increasing at the moment?
Pavlovich:
And the last department I was in, CERT, right? That is, they respond to some threats. Can we say that right now the importance of CERT is increasing, growing every day? They are always important.
Specialist:
The thing is, it's a department, you know, like, our service is probably quiet and unnoticeable there, yes, but it's very important. Because, firstly, it's accredited to remove fraudulent phishing and malicious sites in the RU zone. That is, we are accredited by the RUNETA accreditation center, and for RU, RF and SU domains we can identify such domains, delegate them, delete them, block them, and this is also social assistance, I mean society as a whole, because in the RU zone we respond and delete a bunch of scams, just the most diverse ones, preparations for phishing, just distributors of malware.
If it is located in the RU zone, it is found, it is deleted within a few hours.
Direct line of the CERT department
Specialist:
And what I will note here is that CERT also has a hotline, someone regularly calls us, and the guys talk to people, and they regularly receive all sorts of calls, including threats, because they deleted or blocked someone's domain, and the person did not even know that his site had been hacked a long time ago, and all sorts of things are being broadcast from it, and he thinks that we just blocked it. Of
course, this burns a lot of people. Plus, these guys, they monitor the products that our clients have. We do not sell them just as boxes, like we installed them for you and you can have fun with them yourself. Are these some kind of antiviruses? These are network sensors, these are malware detonation systems, that is, to analyze incoming mail. What is it called, a testing ground?
Pavlovich:
Yes, a testing ground, a testing ground.
Specialist:
So that they open all the attachments and see what happens. Here, these are our agents that are installed directly on computers, handpoints. Here, this is a system that collects data from all these sensors. This is called a handbox. And these guys, counting, monitor all these handboxes that are installed at clients’ places. And they see where there are illegal events, well, false positives, where you really need to strain yourself. They monitor this 24/7, that is, they work in shifts, really, without days off, without holidays, without anything. There is always someone there. And they notify our clients that, like, look, you have a problem.
And this is a big plus, because not every company can afford a security guard. And also a security guard who will monitor 24/7. This should be at least three employees to work for 8 hours. But this is generally unrealistic. We take on this function, which greatly increases the client’s security.
Because there were a lot of attacks like that, on Friday evenings, so that no one would know for sure the whole weekend, and on Monday we were already faced with the consequences. That's why SERD performs a lot of functions, they are definitely important, plus there are a lot of people working there, you saw that there is only part of the shift, at 9 o'clock there will be a shift change, new people will come and so on,
and this is just such a constant story, this is also a constant finger on the pulse, a little differently, that is, without departures, explosions, doors and so on, but definitely also interesting, cool work.
The influence of Group-IB on Telegram and YouTube
Pavlovich:
And you do not have influence on Telegram, on YouTube, for example?
Specialist:
There are different agreements with different platforms, including on anti-piracy, for example, yes, to delete and block pirated content, there is phishing, malware and so on.
Somewhere there are rights, for example, of some moderator, but not that we can delete everything ourselves, but to quickly send some materials to technical support so that it goes through a separate queue of consideration, well, because we have the competencies, it is clear that we will not just narrow all this down there. Well, yes, that is, different platforms have different methods of interaction, of course, with Russian ones it is simpler, there is VKontakte, yes, with Telegram it is also possible, and with some foreign ones it is more difficult, well, but regularly, in general, something is being finalized, finished.
Pavlovich:
I have questions about Telegram. I will make some kind of bot resource there or someone else will clone it right there, call it something similar to me and start scamming people. I just can’t even imagine how to sign up. I don’t know at all how to fight this, with Telegram.
Specialist:
Listen, I can’t tell you, but this very thing, you can just ask Sasha Kalinin. He probably knows, that is, that Telegram is definitely monitored, all sorts of things are tracked there, all sorts of death groups, we have helped a lot of people with that, I have already told you, with investigations and some kind of early blocking, so I think that we can find out from Sasha how and what can be done.
Is there a company honor board?
Pavlovich:
That was Kalinin, who was in the heart, right? And is there, you know, like at McDonald's, they have some kind of honor board, like, I don't know, employee of the month, do you have that?
Specialist:
We regularly have some kind of revenue competitions between sellers, and among techies we have various achievements for all sorts of special projects, there are special badges, bonuses, mentions at our operational events, plus a bunch of thanks for what we have already filmed, and there is not so much an honor board, but rather how we live, how we have fun, a whole wall, yes, about life in the IBI group, let's go and film this story.
Here, well, right here in a frame a specific photo of the employee of the month, no, there is no such thing, because we have too many cool guys working for us, stars, and this always radiates glory. Well, and another plus for the team, different departments interact with each other. Yes, synergy, it is very developed, that is, we regularly come up with something, interact, finish, improve, this is encouraged in every possible way.
What is the most important thing in the development of the company?
Pavlovich:
And what do you think, this is a purely business question, what do you think is the most important, I don’t know, in the development of the company, can you single out some factors?
Specialist:
I am absolutely sure that the most important thing is to believe in what you do. That is, if a company slides into a corporation that just makes money, it becomes faceless and uninteresting. Absolutely any business, any undertaking, it works great, great, when there is such a driver who believes in all this, in the mission, and he gathers like-minded people around him who continue to do all this together.
And when it is not just a job, it is not a means of making money and so on, and money is a means for reinvestment, development and so on. Well, I have already said many times about our mission, that it is to protect cyberspace, our clients, to fight crime. Ilya Sochkov, in fact, is just such a leader, who is charismatic, he gets everyone going, he inspires everyone, he unites everyone around himself, and he does
all this not only for the sake of….
Pavlovich:
Your ship.
Specialist:
Yes, on the ship not only, absolutely not only for the sake of money, yes, not just to become some kind of billion-dollar company, go public and forget about all this. No, it is always a huge social burden, helping everyone, and that is why we try to be apolitical, yes, because evil is everywhere, and good should be everywhere, too, and we need to save clients and people in absolutely all countries, and we need to help everywhere, and we need to fight fraud everywhere.
And we have already talked about all crimes, one way or another, hitting the most vulnerable layers of the population. And unfortunately, there are no super-Robin Hoods among criminals. Crimes are crimes, someone will definitely lose money, health, and anything else. Nerves, life can be ruined, anything.
Are there any motivational programs for the company's employees?
Pavlovich:
Do you have options in the form of participation in the company for top managers, for example?
Specialist:
Such programs are very different, motivational. They are worked out regularly, launched, done, that is, to varying degrees, different employees are involved in motivation in different ways, and now one of the next motivational programs is being launched, so there are very different options, but here you just need to work. But auctions, I mean, for a share in the company.
Yes, this is also possible, yes, Ilyan called it in one of the interviews, that like someone is included in the cost of the company or something like that, yes, such options also exist and here the question is that you need to work for some time before different companies will be like over time a person will be involved in them of course we are most interested in long-term cooperation plus we have incredible opportunities for horizontal vertical growth, something between the sub Well, you can move, for example, from a serta to a lab, from a lab to an investigation, and then become, there, the head of investigations.
For example, Roma Rezukhin, who was in the interview, he worked in cyber intelligence, moved to the lab. Now he is the deputy head of malware research, yes. There, for example, Vesta Matveeva worked for us in the lab, she moved to investigation, then moved to Singapore. She is the head of investigation in the region in this, yes, that is, the Head of Investigation.
Therefore, there are many, many options for movement, of course, this requires an overload from a person, that is, he needs to do his job, desire and so on and so forth, but, yes, such examples exist, they are not unique, I am constantly agitating everyone, do it, give in, we are now launching a large program about locations in new offices, yes, we are opening an office in the Middle East, there are a large number of new locations that will open there, where you can move, we will move developers, programmers, so here it is necessary ...
Therefore, learn English, at least. Learn English, come work for us, there are a lot of interesting vacancies, it's always great.
Do you provide protection to bookmakers?
Pavlovich:
Are there bookmakers among your clients, what do you provide them with protection from, for example, casinos, bookmakers?
Specialist:
Listen, as far as I remember, we have a list of businesses that we don't really work with, but if these are legal bookmakers that are licensed there, yes, they work legally in Russia, then, in my opinion, we help them. Basically, yes, this is all kinds of protection from scams, anti-phishing, something like that, but I don't remember any specific cases of laboratories, but there were cases when, for example, we worked with the ATO desk, this is a public story, we carried out all sorts of checks there.
People still write comments under your videos, why are you inviting him, he got into trouble with the ATO. Yes, yes, yes, that is, we simply conducted an audit there, that's it. But did they go well? They went well, in fact, there is no fraud there, it's just open information, it's enough to look at how much a ticket costs, what ticket circulation there is and what circulation is being raffled off. And it turns out that, roughly speaking, only half of the amount sold is being raffled off.
And let's say, if the circulation there is 5 billion rubles, and they raffled off 2.5, the profit is incredible. Why deceive anyone? There is no point in doing deceptions, some kind of splicing, insertions Well, what all sorts of conspiracy theorists talk about There really are drawings on record and so on But just once again, this is open information We have a law on this gambling thing It is clear that they transfer some number from this percentage to the Ministry of Sports, in my opinion
Yes, it is somehow interesting that this is a sport, like Here, like sport lotto and so on And they raffle off some part Naturally, there are costs for printing and so on, but a huge number of them have a clean profile, absolutely legal, white. Why deceive someone, there is simply no point in it here.
Pavlovich:
But there was just a case about two years ago that almost a relative of this one won there.
Specialist:
Affiliation, yes, some other things. But I am simply explaining that here it is simply Volkom's Brit, yes.
Pavlovich:
But this is no longer some kind of technical issue, but if it took place, yes, there, but fraud, there, let's say, well, of a traditional kind, but not related to IT.
Specialist:
Yes, and so this year we were invited, first of all, to check the voting, like the show "The Voice". There was a vote on how to distribute the prizes. We checked the voting itself on the website, the distribution database. Everything was fine there. And they asked to check the drawing itself during the draw, that the verification of these numbers, it could not be done. And indeed, it cannot be done, because there was an isolated network, and all this happened offline. That is, they received the draw and were already working with it, having disconnected everything from the network.
There is such a story, we selectively checked a bunch of tickets and they passed this audit, which we even announced live on air, told. Super, there is no disgrace. But it is funny, of course, to perform on January 1.
Pavlovich:
Yes, you were still in a smock. It felt like you were a little out of place.
Specialist:
Absolutely out of place, because before that Baskov was sitting there with me, he was telling me funny stories, because we went out together, he was telling me that it was really bad that he arrived so early for the shoot, it was hard, look, they were grammaring him en masse, look, it was hard for him.
The theft of Apple blueprints. What did it lead to?
Pavlovich:
Well, and the last question about the recent incident with the theft of drawings from Apple. Did it really happen and what did it lead to?
Specialist:
Yes, by the way, this is an excellent example, again, of encryption viruses, which after hacking they steal, that is, after hacking they steal data, and only then encrypt everything, we have already talked about this. And here, just as we know, Kvanta Computer is a contractor for Apple, they themselves do not assemble anything, yes, that is, they make designs, print processors, NTN SMS, they assemble them, various Gippiga Tron, and here, among other things, Kvanta Kvanta was responsible for iPad, for Apple Watch, because of MacBook, that is, there is a
certain list of products, so Kvanta was broken, according to rumors, according to rumors, their conveyor even stopped because of the encryption of this, and they really stole the drawings that Apple sent them, new MacBooks that have not yet been announced, where, by the way, they will return the HDMI port, SD cards, there are many interesting things that have come out of this. MagSafe. MagSafe, yes, yes, yes. And they actually tried to blackmail Apple, but it wasn't Apple that was hacked, yes, and therefore nothing really serious was stolen there.
The drawings for assembly, well, like, this product will be released anyway, yes, of course, there may be some losses, that it appeared before the announcement, but it's okay.
Pavlovich:
Oh, well, a competitor, I think everyone in this world has enough money, I don't think that tomorrow AMD will do something based on their stolen drawings...
Specialist:
And who needs MacBook drawings, yes, it's just, rather, for users, interest, what to expect. If Apple itself had been hacked, some developments stolen, that would have been a different story. And this is an assembler, a contractor in Taiwan, well, it's clear that they have bad security, so, naturally, Apple didn't even think about paying for This is exclusively a quantum problem. Perhaps, after this, Apple will force them to strengthen their information security, or refuse altogether, or how will they force them, they, that is, Apple are tough guys, they can dictate terms to anyone very harshly, and I don’t know what will happen to the unfortunate quantum, but that’s why what was called the hack of Apple is in fact the hack of a Taiwanese contractor, and it poses absolutely no threat to anyone, but, again, this shows that encryptors do not give,
they are also ready to trade in stolen information, and that I am afraid that the losses from a simple conveyor, if this is true, because these are rumors, are much greater, there are hundreds of millions, that is, not hundreds, probably several tens of millions of dollars they lost, than the ransom amount or any damage from the encryption itself.
Epilogue
Pavlovich:
That’s it, thank you for the great tour. Have a good trip this time. Write comments, ask questions. Hugs, bye.
