• Tech News
    • Games
    • Pc & Laptop
    • Mobile Tech
    • Ar & Vr
    • Security
  • Startup
    • Fintech
  • Reviews
  • How To
What's Hot

Elementor #32036

January 24, 2025

The Redmi Note 13 is a bigger downgrade compared to the 5G model than you might think

April 18, 2024

Xiaomi Redmi Watch 4 is a budget smartwatch with a premium look and feel

April 16, 2024
Facebook Twitter Instagram
  • Contact
  • Privacy Policy
  • Terms & Conditions
Facebook Twitter Instagram Pinterest VKontakte
Behind The ScreenBehind The Screen
  • Tech News
    1. Games
    2. Pc & Laptop
    3. Mobile Tech
    4. Ar & Vr
    5. Security
    6. View All

    Bring Elden Ring to the table with the upcoming board game adaptation

    September 19, 2022

    ONI: Road to be the Mightiest Oni reveals its opening movie

    September 19, 2022

    GTA 6 images and footage allegedly leak

    September 19, 2022

    Wild west adventure Card Cowboy turns cards into weird and silly stories

    September 18, 2022

    7 Reasons Why You Should Study PHP Programming Language

    October 19, 2022

    Logitech MX Master 3S and MX Keys Combo for Business Gen 2 Review

    October 9, 2022

    Lenovo ThinkPad X1 Carbon Gen10 Review

    September 18, 2022

    Lenovo IdeaPad 5i Chromebook, 16-inch+120Hz

    September 3, 2022

    It’s 2023 and Spotify Still Can’t Say When AirPlay 2 Support Will Arrive

    April 4, 2023

    YouTube adds very convenient iPhone homescreen widgets

    October 15, 2022

    Google finishes iOS 16 Lock Screen widgets rollout w/ Maps

    October 14, 2022

    Is Apple actually turning iMessage into AIM or is this sketchy redesign rumor for laughs?

    October 14, 2022

    MeetKai launches AI-powered metaverse, starting with a billboard in Times Square

    August 10, 2022

    The DeanBeat: RP1 simulates putting 4,000 people together in a single metaverse plaza

    August 10, 2022

    Improving the customer experience with virtual and augmented reality

    August 10, 2022

    Why the metaverse won’t fall to Clubhouse’s fate

    August 10, 2022

    How Apple privacy changes have forced social media marketing to evolve

    October 16, 2022

    Microsoft Patch Tuesday October Fixed 85 Vulnerabilities – Latest Hacking News

    October 16, 2022

    Decentralization and KYC compliance: Critical concepts in sovereign policy

    October 15, 2022

    What Thoma Bravo’s latest acquisition reveals about identity management

    October 14, 2022

    What is a Service Robot? The vision of an intelligent service application is possible.

    November 7, 2022

    Tom Brady just chucked another Microsoft Surface tablet

    September 18, 2022

    The best AIO coolers for your PC in 2022

    September 18, 2022

    YC’s Michael Seibel clarifies some misconceptions about the accelerator • DailyTech

    September 18, 2022
  • Startup
    • Fintech
  • Reviews
  • How To
Behind The ScreenBehind The Screen
Home»Tech News»H0lyGh0st ransomware gang faces challenges, however nonetheless a menace
Tech News

H0lyGh0st ransomware gang faces challenges, however nonetheless a menace

July 29, 2022No Comments4 Mins Read
Facebook Twitter Pinterest LinkedIn Tumblr Email
H0lyGh0st ransomware gang faces challenges, but still a threat
Share
Facebook Twitter LinkedIn Pinterest Email

Because the US authorities improve the out there reward for data on North Korean menace actors by $5m, menace researchers at Digital Shadows have been probing a brand new North Korean ransomware gang, dubbed H0lyGh0st, the existence of which was reported earlier this month by Microsoft.

The gang, which appears to concentrate on concentrating on small and medium-sized enterprises (SMEs), has a modus operandi that isn’t all that completely different from different ransomware gangs – it favours double extortion techniques and operates a knowledge leak web site, amongst different issues – however has some notable quirks that set it aside from its friends, in accordance with Digital Shadows senior cyber menace intelligence analyst Chris Morgan.

Whereas fashionable ransomware gangs are mainly related to Russia – 74% of ransom funds went to Russia-based teams in 2021, in accordance with Chainalysis – North Korean teams akin to Lazarus (with which H0lyGh0st could also be linked by means of the DarkSeoul APT) did a lot to originate the style by means of high-profile incidents akin to WannaCry. And different North Korean ransomwares are usually not unparalleled.

Nevertheless, Morgan defined, North Korean ransomware operations face some distinctive challenges which can be much less troubling to Russian teams.

“Working a cyber felony operation from communist North Korea will current H0lyGh0st with plenty of distinctive points,” he stated. “Whereas the precise relationship with the state is unclear, it’s possible that H0lyGh0st should pay a major proportion and even all of its earnings to the North Korean authorities.

“Whereas your common Russian cyber felony might be blowing his funds on a Lamborghini or dozens of bottles of Bollinger, realistically what are you able to spend your earnings on within the retail chains of Pyongyang? It actually raises questions in regards to the motivations of H0lyGh0st’s operators.”

“Whereas your common Russian cyber felony might be blowing his funds on a Lamborghini or dozens of bottles of Bollinger, what are you able to spend your earnings on within the retail chains of Pyongyang? It raises questions in regards to the motivations of H0lyGh0st’s operators”
Chris Morgan, Digital Shadows

Additional challenges current themselves when it comes to working infrastructure and speaking with victims from inside a pariah state. The parlous state of North Korea’s web companies and its electrical grid imply that H0lyGh0st’s leak website is regularly knocked offline, and it doesn’t publish its victims’ information as regularly as others do. Morgan believes this may occasionally influence its credibility and its potential to ransom victims who assume they’re coping with an attacker that doesn’t have the means to function like Conti or REvil.

H0lyGh0st can be more likely to discover it tougher than others to establish creating methods and entice new expertise to its crew, stated Morgan. Larger-profile operations keep their success by means of a technique of steady enchancment, evolving their methods and burnishing their status. H0lyGh0st’s potential to do that is probably going severely hindered.

Nevertheless, stated Morgan, there are distinct benefits to working out of North Korea. “One remark from Microsoft was H0lyGh0st charged remarkably low ransom costs for victims. H0lyGh0st sometimes asks victims for a ransom of 1.2 to five bitcoins and is prepared to decrease the value to lower than one-third of that in negotiations.

“To place that in context, whereas the value has fluctuated dramatically within the final yr, one bitcoin is at the moment priced at round $20,000-24,000. That’s dramatically decrease than nearly all of different ransomware teams.”

Certainly, he stated, this may occasionally in actual fact make victims extra more likely to pay up on first contact, and doubtlessly eliminates the necessity for protracted negotiations with victims, saving everybody money and time, though not in a great way.

H0lyGh0st additionally advantages from a sure diploma of safety from worldwide legislation enforcement. Because of North Korea’s isolation from the worldwide neighborhood, western authorities’ solely actual choices are issuing indictments or going after cash laundering crypto platforms. They’ve little or no potential to conduct operations, seize infrastructure or make arrests – as regularly occurred in Russia and Ukraine previous to the battle.

Morgan stated H0lyGh0st would possible play a continuous, albeit restricted, function in a wider repertoire of financially motivated cyber felony exercise – such because the concentrating on of susceptible crypto and non-fungible token (NFT) platforms – popping out of North Korea.

 

Source link

See also  Alex Jones faces $45.2 million defamation verdict — but could pay less
challenges faces gang H0lyGh0st ransomware threat
Share. Facebook Twitter Pinterest LinkedIn Tumblr Email

Related Posts

Digital Transformation Challenges And How Businesses Can Overcome Them

September 9, 2023

Navigating Leadership Challenges In a Rapidly Changing World

July 21, 2023

5 Crucial Challenges Startups Must Overcome

June 29, 2023

The Events Industry Is recovering But Entrepreneurs Face Challenges

June 22, 2023
Add A Comment

Comments are closed.

Editors Picks

Max Q: Disrupt – DailyTech

September 5, 2022

1Password 8 arrives on Android and iOS with a big redesign and personalized home

August 9, 2022

Kim Kardashian’s special edition Beats Fit Pro earbuds are now available

August 16, 2022

Lenovo’s IdeaPad 5i Chromebook features a 16-inch display and full-sized keyboard

September 1, 2022

Subscribe to Updates

Get the latest news and Updates from Behind The Scene about Tech, Startup and more.

Top Post

Elementor #32036

The Redmi Note 13 is a bigger downgrade compared to the 5G model than you might think

Xiaomi Redmi Watch 4 is a budget smartwatch with a premium look and feel

Behind The Screen
Facebook Twitter Instagram Pinterest Vimeo YouTube
  • Contact
  • Privacy Policy
  • Terms & Conditions
© 2025 behindthescreen.uk - All rights reserved.

Type above and press Enter to search. Press Esc to cancel.