zlacker

[parent] [thread] 6 comments
1. firest+(OP)[view] [source] 2024-08-12 10:11:57
I find it hard to believe that Russia and China originated this idea in 2017.

Most ransomware gangs are believed to operate from countries with limited or non-existent extradition agreements with Western nations, making it difficult for law enforcement to apprehend them. Some of the countries where these gangs are thought to be based include:

Russia: Many of the most notorious ransomware groups are believed to operate out of Russia. The country is often seen as a safe haven for cybercriminals due to the lack of cooperation with Western law enforcement and the protection of criminals who avoid targeting Russian entities.

Eastern Europe: Several ransomware gangs are also thought to be based in other Eastern European countries, such as Ukraine and Belarus. These regions have a history of cybercriminal activity, partly due to their technical expertise and the geopolitical environment.

Iran: There are also reports of ransomware gangs operating out of Iran, often with links to state-sponsored activities.

North Korea: North Korea has been linked to several high-profile ransomware attacks, and it is believed that the regime uses ransomware as a means of generating revenue.

replies(3): >>seydor+b >>CTDOCo+t >>tim333+hD
2. seydor+b[view] [source] 2024-08-12 10:13:03
>>firest+(OP)
The russian state doesnt make money from private criminals in its area
replies(3): >>whynot+x >>wil421+z >>kvdvee+N
3. CTDOCo+t[view] [source] 2024-08-12 10:18:56
>>firest+(OP)
It's probably to stop capital flight.

At some point the corporate espionage/sabotage and whatever sales taxes they get from funds stolen abroad is worth less than the potential earnings of money leaving the country.

◧◩
4. whynot+x[view] [source] [discussion] 2024-08-12 10:19:33
>>seydor+b
I would like to live in the same world you do where that's believable.
◧◩
5. wil421+z[view] [source] [discussion] 2024-08-12 10:20:21
>>seydor+b
> Our analysis reveals several notable patterns. First, we observe an increase in the frequency of attacks by Russia-based ransomware groups leading up to elections in several major democracies, with no similar increase in attacks by groups based outside of Russia. Second, companies that withdrew from or suspended operations in Russia following the invasion of Ukraine were more likely to experience ransomware attacks in the months following the invasion, potentially indicating retaliatory motives. Third, we find a decline in the number of daily ransomware attacks after the invasion, which could be attributed to Russia enlisting ransomware operators to support its cyber offensive against Ukraine.

https://cyber.fsi.stanford.edu/news/new-paper-assessing-poli...

◧◩
6. kvdvee+N[view] [source] [discussion] 2024-08-12 10:22:39
>>seydor+b
Maybe not directly, but definitely indirectly. To avoid arrest, those criminals can't leave the Russian sphere of control, so they need to spend their ill-gotten gains in Russia. This feeds the local economy, over which the Russian authorities collect taxes.
7. tim333+hD[view] [source] 2024-08-12 15:09:12
>>firest+(OP)
Knowing China and Russia they'd probably use it to crack down on dissidents while ignoring it when it comes to their friends.
[go to top]