Cybercriminals Robbed Other Crooks but Ordinary People Suffered the Most

Extortion viruses create a lot of problems and cost huge amounts of money to both home users and businesses. This is a form of malicious software that encrypts files on a computer or sometimes locks computers. Victims can only restore access to their data or system if they pay a ransom to criminals.

Distributors of extortion viruses have recently suffered from other similar quick-money-lovers who manipulated the system used by the first group of hackers and stole ransom payments provided by virus victims.

For some of us, this may seem like a small problem – crooks robbed other crooks. But this case did not allow ransomware victims to unblock their encrypted files, as distributors of malicious software did not receive their ransom payments. This case is considered the first of its kind.

How did it happen?

Cybercriminals do not trust VPN and use the Tor browser that they believe provides decent online anonymity. While almost all ransom notes instruct victims to download and install the Tor browser, others only provide links to Tor proxies that translate Tor traffic into normal web traffic.

The latter method is very important for hackers who seek to simplify the payment process for their victims as much as possible. For the average victim, it is much easier to follow the link than download an additional program.

Operators of the Tor proxy service called Onion.top at some point realized that their Tor gateway could be used to change the addresses of cryptocurrency wallets. They scanned their service in search of Bitcoin addresses and secretly substituted them with their own addresses.

Security researchers found that victims and operators of several ransomware strains, including notorious GlobeImposter, Sigma, and other suffered from Onion.top manipulations.

Ransomware authors detected the rogue activity of Onion.top and started to instruct their victims to avoid it and use only Tor browser instead.

As noted above, recent victims, such as, for example, the state of Alabama, are the only losers in this scenario. They paid thousands of dollars in Bitcoins, but did not get their files back as distributors of crypto-viruses did not receive their ransoms.

Views: 136

Comment

You need to be a member of 12160 Social Network to add comments!

Join 12160 Social Network

Comment by david james on February 23, 2018 at 5:21pm

  Considering CYBERCRIME is now Job #1 of the NSA, as well as Job #2 for CIA-we can aptly attribute 99% of Cybercrime in the US to them.

Furthermore they are executing 96% of Cybercrimes Worldwide. 

(2/2018)

"Destroying the New World Order"

TOP CONTENT THIS WEEK

THANK YOU FOR SUPPORTING THE SITE!

mobile page

12160.info/m

12160 Administrators

 

Latest Activity

Less Prone posted a video

A teacher exposes the LGBT agenda coming into in elementary schools

At the Teens4Truth Conference at the Southwestern Baptist Theological Seminary, Nov.18, 2017. A teacher warns that parents have no idea how bad it is, and ev...
16 hours ago
0 Comments
Less Prone commented on Doc Vega's photo
Thumbnail

main-qimg-c0f46f334984bf2d4642651a38db08ca

"This is sick. What about learning something useful like, reading, mathematics, literature, science…"
16 hours ago
Burbia posted a blog post

How much money makes anyone have a god complex?

Trump makes a meme of himself as Jesus Christ. Soros says he fancied himself a sort of god.In 2004,…See More
21 hours ago
0 Comments
Sandy posted a photo
Thumbnail

FB_IMG_1777101380605

Saturday
0 Comments
Doc Vega posted a photo
Thumbnail

main-qimg-c0f46f334984bf2d4642651a38db08ca

Hate children< then put them in a classroom where Lebians teach them how to use dildos, where…
Friday
1 Comment
Doc Vega commented on Doc Vega's blog post Why Was The TV Show “The Outer Limits” Such a Threat?
"Gordon thanks for your support."
Thursday
Doc Vega posted a blog post

What If origins on Our Planet are Different Than we Think?

 For a long time now there has been a theory that would fit into both creationism and the simulated…See More
Thursday
0 Comments
honeygirl posted a video

All Bases Erased, Air Defense Shattered ! Iranian Missiles Massacre U.S. FORCES | Douglas Macgregor

Enjoy the videos and music you love, upload original content, and share it all with friends, family, and the world on YouTube.
Thursday
0 Comments
Less Prone favorited Sandy's video
Thumbnail

This Is What a Data Center Looks and Sounds Like

Thursday
Less Prone favorited Doc Vega's blog post The Escape
Thursday
Less Prone posted a photo
Thumbnail

Same Package - Different Label

This way or that way, we get to the same place. It's time to take another road.
Thursday
0 Comments
Less Prone favorited Sandy's video
Thumbnail

Dan Bilzerian believes Palestinians are real Semites and he explained why

Thursday
agen Dadu is now a member of 12160 Social Network
Thursday
Welcome Them!
Less Prone commented on tjdavis's photo
Thumbnail

TRIVIA OF THE DAY Kier means “Penis” in Persian

"Nomen est omen. A political dick destroying his own country."
Thursday
tjdavis's blog post was featured

Summed Up

Thursday
0 Comments
Doc Vega's 2 blog posts were featured
Thursday
tjdavis favorited honeygirl's video
Thumbnail

This Isn’t a Theory Anymore — The Thiel/Epstein Power Network Is Being Built Now | Whitney Webb

Thursday
Doc Vega posted blog posts
Wednesday
Doc Vega commented on cheeki kea's blog post IN ITS OWN WORDS: CHAT GPT LAYS OUT THE AGENDA.
"Wow! The final progressive steps to the government run matrix. Now just fine tuning it. I…"
Wednesday
cheeki kea commented on Doc Vega's blog post The Escape
"That's a great poem it's a good time for writing being national poetry month in America…"
Wednesday

© 2026   Created by truth.   Powered by

Badges  |  Report an Issue  |  Terms of Service

content and site copyright 12160.info 2007-2019 - all rights reserved. unless otherwise noted