A Ukrainian researcher who recently leaked tens of thousands of chat messages belonging to the operators of the Conti ransomware, has now published the malware's source code. The media speculate the leak will be a major blow for the ransomware gang’s reputation, which could result in affiliates moving elsewhere.
The same researcher leaked another 107,000 internal messages, and after that the source code for multiple Conti tools, including the group’s administration panel, the BazarBackdoor API, as well as the Conti ransomware encryptor, decryptor, and builder.
The researcher published the code as a password-protected file, prompting a rush of requests for access. They explained that they would release the password to trusted parties. The researcher also published access details for several storage servers used by the Conti group.
Other code released in the ContiLeaks dumps appears to include the source for the TrickBot command dispatcher and data collector. The researcher tweeted what they claim is the GitHub page and Gmail address obtained from the code.
Besides heavy sanctions and the country’s elimination from various international organizations and infrastructure, the backlash has also spilled into the cyber-realm. The Russian invasion of Ukraine doesn’t seem to be paying off.
See What’s Next in Tech With the Fast Forward Newsletter
Tweets From @varindiamag
Nothing to see here - yet
When they Tweet, their Tweets will show up here.
