Several ransomware gangs have recently become victims of cyber criminals themselves. The ransomware groups are not always the people who make the ransomware themselves, but rent it from other criminals or groups. To our great surprise, it turns out that the malware makers cannot be trusted either. They make off with the hard-earned ransom that their clients have taken.
Ransomware as a Service
It is well known that the cybercriminals who create malware and ransomware rent their software as a package to less technical criminals, so-called Ransomware-as-a-Service. For example, ZDNet reports that the shadowy group behind the infamous REvil ransomware, used in the prominent attacks on Kaseya and Acer, also rents out their software to other parties. As payment, the criminals demand part of the ransom.
To the dismay of the criminal clientele, REvil discovered another called threat actor a secret backdoor into the REvil software. This allowed the creators to remotely decrypt the files and take over the chat, without the tenant of
Read the article