Facebook
Britain's News Portal
Around The Clock
BREAKING
Loading latest headlines…

Leaked Messages Expose Inner Workings of Notorious Ransomware Gang Conti

Internal communications from the infamous Conti ransomware group, responsible for attacks on over 1,000 organisations globally, have been leaked. The messages reveal deep divisions within the gang, particularly concerning the targeting of critical infrastructure like healthcare.

  • Conti, a major ransomware group, saw its internal messages leaked in 2022 after an implosion triggered by the Russia-Ukraine war.
  • The leaks expose the gang's discussions and disagreements, including debates over attacking healthcare facilities.
  • UK organisations, such as Redcar and Cleveland Borough Council, were among the more than 1,000 entities affected by Conti's hacks.

Leaked internal messages have exposed the inner workings and stark moral disagreements within Conti, one of the world's most prolific ransomware gangs, which brought chaos to British businesses and public services. Thousands of secret communications were made public after a group of Conti members leaked over 300,000 messages in 2022, following the Russian invasion of Ukraine.

The leak has shed light on the gang's methods and targets, with Conti reportedly making an estimated £180 million from extorting millions of pounds from organisations in 2021. British entities among its victims include Redcar and Cleveland Borough Council and luxury jeweller Graff. The leaked chats have also revealed contentious discussions around targeting healthcare institutions, with some members advocating for attacks that could lead to panic and death.

A particularly devastating attack occurred in May 2021 on the Irish Health Service Executive (HSE), which brought nearly all hospitals and healthcare facilities in Ireland to a standstill. Oncologist Seamus O'Reilly recounted the disruption at Cork University Hospital, where screens went blank, and access to patient data was lost. The hackers demanded £14 million to restore services, leaving patients like Donna-Marie Cullen, undergoing cancer treatment, fearing for their lives.

The internal discussions revealed a shocking lack of empathy from some members, with one individual identified as 'Target' expressing delight at the potential for panic and death. However, not all members shared this approach; messages show some expressed strong reservations about attacking maternity hospitals, questioning the founder's approval for such an action and offering to provide a decryptor if it was unauthorised.

The leak has provided an unparalleled understanding of Conti's operations, according to Joe Wrieden, cyber threat intelligence leader at Cyjax. The sheer volume of information obtained from the leaked messages is likely to have significant implications for law enforcement agencies and cybersecurity professionals worldwide.

Why this matters: The Conti leaks offer a rare glimpse into the inner workings of a major cybercrime organisation, revealing the human element behind devastating attacks. Understanding their internal debates and vulnerabilities can inform better cybersecurity strategies for UK businesses and public services.

What this means for you: What this means for you: As a UK resident, this story highlights the persistent threat of ransomware to essential services and businesses, including those you rely on daily. It underscores the importance of strong cybersecurity practices for individuals and organisations to protect personal data and critical infrastructure.

Related Articles

Get the news that matters.

Join thousands of readers getting the best of British news straight to their inbox.