There’s a multi-part article dealing with a new group called the Snatch Ransomware Group.
In part 1, Brian talks about how their vbisitor internet protocol addresses were leaked. That article is titled ‘Snatch’ Ransom Group Exposes Visitor IP Addresses which got picked up in multiple places.
The worst thing is that they’re using Google paid ads to get their wares on to your device. According to this article, this group was first spotted in 2018.
So, how did we not hear about it until now? I don’t honestly know, maybe they were doing this to stay undetected and doing a great job.
This group is like many others, publishing data if the victim organization isn’t paying the ransom or did not negotiate some sort of deal with the operators.
This supposed website attracts thousands of visits to the darknet site. The interesting thing is a regular IP address that accessed the site which Brian goes in to more detailabout here.
The second article A Closer Look at the Snatch Data Ransom Group is another interesting article. Apparently, the guy who is mentioned claims that he knows nothing about this group, as the username talked about is his but he never “did” what is discussed within this article.
You be the judge! Happy hunting.
Discover more from The Technology blog and podcast
Subscribe to get the latest posts sent to your email.