Ryuk ransomware has squeezed more than $150 million from victims

midian182

Posts: 7,058   +62
Staff member
In brief: Crime doesn't pay, so the saying goes, though the operators behind the Ryuk ransomware would probably disagree. Security researchers believe that criminals have gained more than $150 million from victims who hand over the Bitcoin ransom.

Threat intelligence company Advanced Intelligence and cybersecurity firm HYAS in a joint report wrote that they tracked 61 Bitcoin wallets attributed to Ryuk ransomware. They discovered that criminals send most of the crypto to an exchange via an intermediary to cash out.

Once a victim's money is paid to a broker, they send it to the Ryuk operators who move most through laundering services. It then reaches exchanges where it is either cashed out or used on criminal enterprises.

Rather than preferring obscure crypto exchanges, the criminals use well-established names, such as the Asia-based Binance and Huobi. Both require proof of identity before someone can transfer fiat currencies to a bank, though the ransomware gangs are likely using fake IDs.

"In addition to Huobi and Binance, which are large and well-established exchanges, there are significant flows of crypto currency to a collection of addresses that are too small to be an established exchange and probably represent a crime service that exchanges the cryptocurrency for local currency or another digital currency," write the researchers.

Ryuk payments are usually in the hundreds of thousands of dollars range, though some victims end up paying millions. Local governments are a popular target for the operators; Jackson County and Key Biscayne were both hit by Ryuk, which remains the most profitable variant of ransomware.

Permalink to story.

 

brucek

Posts: 847   +1,212
So every news story I've ever seen about a hacked or ransomed Win XP box have all been false?

I believe there are Windows XP boxes that have never been targeted, or were silently scanned and did not trigger any of the conditions for the malware to activate. That's very different from believing that no Win XP box ever has or ever will.
 

Bullwinkle M

Posts: 547   +438
So every news story I've ever seen about a hacked or ransomed Win XP box have all been false?

I believe there are Windows XP boxes that have never been targeted, or were silently scanned and did not trigger any of the conditions for the malware to activate. That's very different from believing that no Win XP box ever has or ever will.

There is no need to twist what I am saying into something completely different

XP boxes are EXTREMELY dangerous for most people, but not to a real security expert like myself

I have had zero problems running XP online for the past 7 years

But that's just me
Your results may vary
 

brucek

Posts: 847   +1,212
XP boxes are EXTREMELY dangerous for most people, but not to a real security expert like myself

I have had zero problems running XP online for the past 7 years

But that's just me
Your results may vary
Thank you for clarifying. Didn't mean to twist your words. Not sure I've ever seen you acknowledge that first part before, for sure not in this thread.

Are there any people who fall between a "real security expert like yourself" and "a lying troll or a Fu$%#*& |di*t" (what you called someone for being impacted)? What do you recommend for the regular average computer user?
 

Bullwinkle M

Posts: 547   +438
Thank you for clarifying. Didn't mean to twist your words. Not sure I've ever seen you acknowledge that first part before, for sure not in this thread.

Are there any people who fall between a "real security expert like yourself" and "a lying troll or a Fu$%#*& |di*t" (what you called someone for being impacted)? What do you recommend for the regular average computer user?

I would recommend Linux Mint for the regular average computer user, but "IF" Windows is required for certain applications, then 8.1 or 10 are good enough if you don't mind the MS BS and keep it updated

 

Squid Surprise

Posts: 4,126   +3,314
Thank you for clarifying. Didn't mean to twist your words. Not sure I've ever seen you acknowledge that first part before, for sure not in this thread.

Are there any people who fall between a "real security expert like yourself" and "a lying troll or a Fu$%#*& |di*t" (what you called someone for being impacted)? What do you recommend for the regular average computer user?
Only Windows 10 for the average computer user (unless you use a Mac).... unless you know what you're doing, any *nix based OS is actually less secure as they take a bit of knowledge to run smoothly (but if you DO know what you're doing, they can be vastly superior).