Notorious Ransomware Hackers have Earned $3.7 Million in Bitcoin

News
Spread the love

The identity of notorious ransomware, Ryuk, which has attacked a significant number of high profile organisations, seems to have discovered after a new interesting development.

Cheesy Death Note

Ryuk, rapidly emerged last year on the radar of many organisations which had their information crippled and encrypted by a mysterious group known as GRIM SPIDER. The group was earlier believed to be an organized security industry in North Korea because of Ryuk’s similarity with another popular ransomware named Hermes; however, the assumption has been discarded.

With a cheesy taste in names, the group has been deduced to be a good fan of manga and Japanese anime characters rather than a taste in ‘national revenge.’ Ryuk, as the name of the ransomware goes, is a fictional character in Japanese manga sour in boredom and who seeks excitement by dropping death notes for its victims—(Lakeith Stanfield sounds familiar?)—who in turn scribble enemies they want dead in a supernatural notebook.

GRIM Spider has been distributing ‘death notes’ since last year, freezing backups and databases, while demanding payment in digital currencies. The group notably attacked a big Canadian food chain last year, December, and explicitly asked for payments in Bitcoins (BTC). The group in its message to the restaurant Chain, Recipe Unlimited, warned that it had exploited a major security gap in the restaurant systems and encrypted the company’s files “with the strongest military algorithms.”

“The final price depends on how fast you write us,” the message read, with each delay causing an additional ransom fee of +0.5 BTC.

Evolving Targets

GRIM SPIDER has now, over time, focused its attention on large companies and government institutions. After employing email phishing campaign methods to infect thousands of intended victims with a banking Trojan called TrickBot, the group would selectively choose infected machines that fit important profiles and launch the second phase of the attack.

The second phase involves locking of victims hard drives and encrypting it till the victims pay the required ransoms in Bitcoin. The ransom demanded is set to differ by a target, and according to research by McAfee & CrowdStrike, the group has possibly eclipsed the reported $3.7 million (705 BTC) made. CrowdStrike reported:

“TO DATE, THE LOWEST OBSERVED RANSOM WAS FOR 1.7 BTC, AND THE HIGHEST WAS FOR 99 BTC. WITH 52 KNOWN TRANSACTIONS SPREAD ACROSS 37 BTC ADDRESSES (AS OF THIS WRITING), GRIM SPIDER HAS MADE 705.80 BTC, WHICH HAS A CURRENT VALUE OF $3.7 MILLION (USD). WITH THE RECENT DECLINE IN BTC TO USD VALUE, IT IS LIKELY GRIM SPIDER HAS NETTED MORE.”

No Comments

Leave a Reply

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Bitcoin
Bitcoin Price Faces Third Monthly Loss of 2019
Spread the love

Spread the love Bitcoin is on track to test $9,000, having dived out of a narrowing price range earlier this week. The cryptocurrency is likely to end August on a negative note, having suffered losses in July and January. BTC may suffer a deeper price drop over the next few months, possibly …

Bitcoin
Satoshi Nakamoto: ‘Bitcoin dips below $10K — again :(’
Spread the love

Spread the loveWelcome to another edition of Bitcoin Today, where I, Satoshi Nakaboto, tell you what’s been going on with Bitcoin in the past 24 hours. As Albert Einstein used to say: Let’s whip up a knowledge omelette! Bitcoin Price We closed the day, August 28 2019, at a price …

Bitcoin
Bitcoin Eyes $9K Price Support After Drop to One-Month Lows
Spread the love

Spread the loveBitcoin (BTC) could drop to $9,000 in the next 24 hours, having strengthened the short-term bearish case with a drop to one-month lows earlier today. The top cryptocurrency by market value fell to $9,320 at 07:36 UTC today, the lowest level since July 28, according to Bitstamp data. …