December 19, 2023 at 10:45AM
Cybersecurity researchers disclosed details about the ransomware operation run by Russian national Mikhail Pavlovich Matveev, who allegedly led attacks worldwide. Matveev and his team demonstrate a relentless pursuit of ransom payments, engaging in dishonest practices and showing a disregard for ethical values. They utilize various tactics and tools for their operations, and their activities have connections to notorious cybercriminals and past ransomware groups.
Key takeaways from the meeting notes:
– Russian national Mikhail Pavlovich Matveev, also known as Wazawaka, is allegedly involved in various ransomware operations such as LockBit, Babuk, and Hive.
– Matveev’s team consists of six penetration testers and engages in ransomware attacks by utilizing tools and techniques to gain initial access, escalate privileges, and execute their operations.
– Connections between Matveev and other cybercriminals, such as Evgeniy Mikhailovich Bogachev, suggest deeper ties to cybercrime operations like Evil Corp.
– The analysis indicates the rebranding of Babuk ransomware operations to PayloadBIN and its association with Evil Corp to evade sanctions.
Feel free to reach out if you need any further clarification or information.