A security researcher has uncovered a series of vulnerabilities in the web dashboards used by multiple ransomware gangs, preventing six companies from falling victim to ransom demands. Vangelis Stykas, Chief Technology Officer of Atropos.ai, initiated a research project to address the anonymity and data encryption tactics employed by these criminals operating on the dark web.
Despite the common advice to never comply with ransom demands, payments to ransomware gangs are currently at an all-time high. While larger corporations are frequent targets, small businesses are also at risk. Stykas identified flaws such as insecure direct object references and default passwords used by these gangs to gain unauthorized access to sensitive data.
By exploiting code bugs, Stykas was able to locate the IP addresses of servers used by the ransomware gangs and obtain decryption keys to assist affected companies. The vulnerabilities discovered in the web dashboards of these gangs have shed light on the security flaws present in their operations, potentially aiding law enforcement efforts in combating ransomware attacks.
These findings underscore the importance of robust cybersecurity measures to safeguard against ransomware threats and highlight the need for ongoing vigilance in the face of evolving cyber threats.