home.social

#mountlocker — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #mountlocker, aggregated by home.social.

  1. Do you remember the #ransomchats project? Since its inception, #ransomware negotiations involving #Akira and #BlackBasta, notably, have been added. And there's more to come. 😉

    github.com/Casualtek/Ransomcha

    But that's not all... First, Calvin So performed a comparative analysis of #ransomware chat logs and quickly brought interesting findings 👇
    medium.com/@callyso0414/tracin

    Shortly after, he did it again only to find similarities suggesting a connection between #Conti & #MountLocker predating the #Conti & #Quantum one 🤩
    medium.com/@callyso0414/tracin

    And that's still not all! The good folks at Sec4U also analysed the chat logs, coming up with Dos and Don'ts for #negotiation in case of #ransomware attack, stressing also that negotiating doesn't mean paying 👇
    neteye-blog.com/2023/09/ransom

    Whatever analysis you 🫵 have performed on the #ransomchats, please share your work and findings 🙏

  2. On pensait jusqu'ici qu'une des équipes de Conti était passée à Quantum au printemps 2022, à la suite de l'implosion de l'enseigne. L'analyse stylométrique de négociations de l'automne 2020, avec #MountLocker d'un côté, et Conti de l'autre, suggère qu'une équipe #Conti travaillait déjà à cette période là avec le prédécesseur de #QuantumLocker. #ransomware lemagit.fr/actualites/36654230

  3. Les opérateurs derrière le ransomware Mount Locker diffusent des données relatives à :

    • 🇺🇸 [10 GB] Geotech Engineering and Testing (geotecheng.com)

    • 🇫🇷 [160 GB] MERSEN (mersen.com)

    • 🇺🇸 [130 GB] Wasserstorm (wasserstrom.com)

    • 🇺🇸 [2000 GB] Transtar Industries (transtar1.com)

    #RANSOMWARE #MOUNTLOCKER #DATABREACH