Security News > 2022 > February > Conti ransomware's internal chats leaked after siding with Russia

Conti ransomware's internal chats leaked after siding with Russia
2022-02-28 04:23

An angry member of the Conti ransomware operation has leaked over 60,000 private messages after the gang sided with Russia over the invasion of Ukraine.

AdvIntel CEO Vitali Kremez, who has been tracking the Conti/TrickBot operation over the last couple of years, also confirmed to BleepingComputer that the leaked messages are valid and were taken from a log server for the Jabber communication system used by the ransomware gang.

After Ukrainian Conti affiliates grew upset over the siding with Russia, the Conti gang edited their message to state that they "Do not ally with any government" and that they "Condemn the ongoing war."

Their change of heart came too late, and an angry member of the Conti gang emailed BleepingComputer and other journalists tonight with a link to the leaked conversations.

The contents of the first dump contain the chat communications of the Conti Ransomware gang.

BleepingComputer recently learned that the Maze, Egregor, and Sekhmet operations were operating directly from within Ukraine, with one of the developers telling BleepingComputer that they were arrested by the SSU. Therefore, it is not surprising that ransomware gangs and hacking groups who side with Russia find that their Ukrainian members are getting upset, and potentially taking revenge, as we saw with Conti tonight.


News URL

https://www.bleepingcomputer.com/news/security/conti-ransomwares-internal-chats-leaked-after-siding-with-russia/