A security researcher aggrieved by the Conti ransomware’s support to the Russian government has been leaking its data regularly.
The trove data contained Conti ransomware’s internal messages, backdoor malware APIs, servers screenshots, and the source code for their malware builder, encryptor, and decryptors. All these are now public and could be used by other threat actors for making their own ransomware.
Leaking Conti Ransomware Source Code
BREAKING: @HoldSecurity tells me Conti’s systems have been infiltrated by cybercrime researchers for some time. The data was dumped by a Ukrainian cyber security researcher pissed off after Conti expressed support for Russia in the conflict. #infosecurity — The Ransomware Files (@ransomwarefiles) February 28, 2022
