The extortionate Conti group, known for its attacks on large organizations, has itself been leaked. A Ukrainian security researcher has published more than 60 thousand internal messages of the group online. The event took place a few days after Conti sided with Russia in the conflict with Ukraine.
AdvIntel CEO Vitali Kremez, who has been tracking Conti’s work over the past few years, confirmed that the leaked messages are genuine and were taken from the log server for the Jabber communication system used by the ransomware gang.
The published messages contain various information about the activities of the group, including previously unfixed victims, URLs of personal data leaks, bitcoin addresses and discussions of their operations. From April 21, 2017 to February 28, 2022, Conti received 65,498,197 BTC (about $2,707,466,220 billion).
It is noteworthy that the LockBit extortionate group has taken a neutral position, declaring its apoliticality
“For us, it’s just business, and we’re all apolitical. We are only interested in money for our harmless and useful work. All we do is provide paid training to system administrators around the world on how to properly set up a corporate network. We will never, under any circumstances, take part in cyber attacks on critical infrastructures of any country in the world or enter into any international conflicts,” the group said in a statement.