Security News > 2022 > March > Conti Ransomware V. 3, Including Decryptor, Leaked

Conti Ransomware V. 3, Including Decryptor, Leaked
2022-03-21 17:48

BleepingComputer compiled the newly released source code for Version 3 of Conti ransomware without any issues, successfully creating the gang's executables for encrypting and decrypting files.

After analyzing the source code, Payload - a Polish magazine about offensive IT security - dismissed Version 3 as being a "Giant step back" from Version 2 in terms of code quality.

ContiLeaks' earlier spills included an older version of Conti ransomware source code - one that dated to Jan. 25, 2021.

The leaks - an act of revenge wrought upon the cybercrooks who've sided with Russia in the war - have also included nearly 170,000 chat conversations between the Conti ransomware gang members, covering more than a year from January 2021 through February 2022.

To protect from ransomware attacks, Rajiv Pimplaskar, CEO of the VPN company Dispersive Holdings, told Threatpost on Monday that organizations should look beyond protecting data at rest: the data that's at risk of getting paralyzed in a ransomware attack.

"Network resources are prime targets for Ransomware as a Service actors as they can be ideal vectors for insider threats, code and injection attacks, Man In The Middle, privilege escalation as well as lateral movement," Pimplaskar said via email.


News URL

https://threatpost.com/conti-ransomware-v-3-including-decryptor-leaked/179006/