Russian hackers are said to have made more than $400 million in crypto-ransomware attacks in 2021.
About 74 percent (more than $400 million) of ransomware revenue last year went to high-risk wallet addresses that may be located in Russia, according to a new report released Monday by blockchain analytics firm Chainalysis. The report analyzed ransomware hacks throughout 2021 and identified their ties to Russia by three key characteristics:
1. The traces left behind a particular intrusion by the Russian cybercriminal group Evil Corp; the group is said to have ties to the Russian government.
2. Ransomware targeting only victims in non-Soviet countries.
3. A ransomware virus that shares files and announcements in Russian.
Network traffic data appears to confirm that the vast majority of the extorted funds were laundered through Russia. Another 13% of funds sent to services from ransomware addresses went to users who were likely in Russia — more than in any other region. This type of ransomware usually infects users' computers through program vulnerabilities or downloading unknown files. They then encrypt the victim's file and ask to send Bitcoin or Monero (XMR) to a wallet address in order to open the file.
A well-known case occurred last year when the Russian hacking entity Darkside infected Colonial Pipeline's computer systems by exploiting a leaked password. As a result, the pipeline operator was forced to pay a crypto ransom of more than $4 million — $2.3 million of which was recovered — to regain access to its encrypted files, but also sparked a brief gas crisis in the meantime.
Disclaimer : The above empty space does not represent the position of this platform. If the content of the article is not logical or has irregularities, please submit feedback and we will delete or correct it, thank you!
COPYRIGHT © 2021-2023 HZD.COM & WWW.HZD.AI ALL RIGHTS RESERVED
