Cybersecurity News in Asia

Features
- Featured
  
  AI adoption in India: A balancing act worth chatting about
  
  Thursday, April 25, 2024, 2:53 PM Asia/Singapore | Features, Newsletter
- Featured
  
  AI vulnerability testing: Knowing the In’s and Out’s of proper red teaming
  
  Monday, April 22, 2024, 4:40 PM Asia/Singapore | Case Study, Features
- Featured
  
  What businesses need to know about SEO poisoning
  
  Tuesday, April 16, 2024, 4:55 PM Asia/Singapore | Features
News
- Featured
  
  How medical devices manufacturer Tuttnauer protects patient and personal-data safety
  
  Tuesday, April 23, 2024, 5:22 PM Asia/Singapore | Case Study, News
- Featured
  
  How much of automated internet traffic contains malicious activity?
  
  Monday, April 22, 2024, 9:02 AM Asia/Singapore | Cyberthreat Landscape, News, Newsletter
- Featured
  
  Large language models have their strengths and weaknesses: analysis
  
  Monday, April 22, 2024, 8:56 AM Asia/Singapore | News
Opinions
Tips
Whitepapers
Awards 2024
Directory
E-Learning

News

Getting to know the Russia-based Conti threat group

By CybersecAsia editors and webmaster webmaster | Wednesday, March 16, 2022, 1:00 AM Asia/Singapore

In Feb 2022, leaked chat logs of the threat group’s members showed how professionally organized and managed these hackers are.

The infamous ransomware-as-a-service group Conti is said to be based in Russia and tied to Russian intelligence agencies.

Conti has been blamed for ransomware attacks targeting dozens of businesses, including clothing giant Fat Face and Shutterfly, as well as critical infrastructure such as the Irish healthcare service and other first-responders networks.

Now, after chat logs belonging to the threat group were leaked by an insider on 27 February this year, cyber researchers from Check Point Research (CPR) have gained more insights into the group’s organizational structure.

They operate like a tech firm

Imagine a threat group that is so well-organized that it has an HR department; a hiring process; offline office premises; salaries and bonus payments. Also the threat group:

has a hierarchical and defined structure comprising team leaders who report to upper management
employs specialized groups of HR, coders, testers, crypters, sysadmins, reverse engineers, offensive team, OSINT Specialists and Negotiation Staff
operates in several physical offices in Russia
offers compensation schemes such as monthly bonuses, fines (for underperformance), employee of the month, performance reviews
employs a salary scheme as well as a commissions payment system based on a percentage of paid ransom amounts in Bitcoin.
Illegally ‘borrows’ the CV pool of Russian-speaking headhunting services such as headhunter.ru and other sites such as superjobs.ru for talent hunting, but does not leave traces of developer job openings on such websites
keeps workers anonymous and goes to such lengths to protect member identities
is actively discussing future plans for an internal crypto exchange and a Dark Net social network

The social network was (tentatively) dubbed “VK for darknet” or “Carbon Black for hackers”, and may be developed as a commercial project. In July 2021, Conti was already in contact with a designer, who had produced a few mockups, according to the leaked chats.

Leave a reply Cancel reply

You must be logged in to post a comment.

Voters-draw/RCA-Sponsors

CybersecAsia Voting Placement

Gamification listing or Participate Now

Vote Now -Placement(Google Ads)

Top-Sidebar-banner

Whitepapers

Secure Access Service Edge (SASE) Solutions for Today’s Work-From-Anywhere (WFA) Environment
Organizations are turning to Secure Access Service Edge (SASE) solutions for securing remote work environments, …Download Whitepaper
Identity Has Breached the Ecosystem
This whitepaper explores the dual nature of identity in cybersecurity, emphasizing its role in both …Download Whitepaper
Fortanix Buyers Guide for Modern Key Management and Data Security
This document underscores the pressing challenges in key management and data securityDownload Whitepaper
Fortanix Data Risk Management – Using Tokenization to Secure Your Data
In today's digital world, organizations prioritize data security. To protect sensitive information, they use tokenization, …Download Whitepaper

Middle-sidebar-banner

Case Studies

How medical devices manufacturer Tuttnauer protects patient and personal-data safety
In running a cloud-based portal to link its smart medical equipment, the firm has also …Read more
AI vulnerability testing: Knowing the In’s and Out’s of proper red teaming
To test the safety/security of a generative AI feature, what unchartered bugs and human testing …Read more
Real estate logistics provider GLP steps up to zero trust architecture
With its physical and digital footprint growing, the global firm’s outdated legacy security stack has …Read more
Identity security woes now a thing of the past for Heng Leong Hang
The retail chain was grappling with numerous cyber risks in its IT infrastructure until it …Read more

Cybersecurity News in Asia

Featured

AI adoption in India: A balancing act worth chatting about

Featured

AI vulnerability testing: Knowing the In’s and Out’s of proper red teaming

Featured

What businesses need to know about SEO poisoning

Featured

How medical devices manufacturer Tuttnauer protects patient and personal-data safety

Featured

How much of automated internet traffic contains malicious activity?

Featured

Large language models have their strengths and weaknesses: analysis

Getting to know the Russia-based Conti threat group

They operate like a tech firm

Related Posts

Leave a reply Cancel reply

Voters-draw/RCA-Sponsors

CybersecAsia Voting Placement

Gamification listing or Participate Now

Vote Now -Placement(Google Ads)

Top-Sidebar-banner

Whitepapers

Middle-sidebar-banner

Case Studies

Bottom sidebar