Adrian Johnson
TLDR: Ransomware groups are better at web app security than most enterprises, with only 3% of ransomware websites found to have vulnerabilities compared to 40-50% of businesses. A researcher was able to hack into high-profile ransomware web portals, exposing vulnerabilities and causing groups to shut down. Enterprises are urged to take cybersecurity seriously and secure their systems to avoid being the next victim.
The research presented at Black Hat revealed that ransomware actors have far more secure web applications than their enterprise targets. Vangelis Stykas, CTO of penetration testing firm Atropos, found vulnerabilities in only 3% of ransomware websites compared to 40-50% in businesses. This highlights the need for enterprises to improve their web app security.
Stykas managed to hack into several high-profile ransomware web portals, including ALPHV/Black Cat, Everest, and the Mallox ransomware family. By exploiting vulnerabilities in these sites, he was able to extract sensitive data and disrupt the operations of the groups, causing some to shut down entirely.
The researcher emphasizes the importance of taking cybersecurity seriously and securing external-facing websites and internet-facing systems. He warns that failing to do so could make enterprises the next victim of ransomware attacks, underscoring the urgency for businesses to prioritize cybersecurity measures.
