'How Cryptocurrency Gave Birth to the Ransomware Epidemic'

Posted by EditorDavid

on Saturday April 16, 2022 @10:34AM from the birth-of-the-bad dept.

• • • Re:

      Not really a good thing - before it was a limited scope since it would be harder to sell to ID thieves and it also was specific data, not just any data.

      With cryptocurrency you can just lock all data and don't care about the content and that has a bigger payoff.

      So only way would be if the banks stop trades in cryptocurrency - and that has already started. There are people today sitting on cryptocurrency that they can't cash in.

    • Re:

      Who says they don't sell it to identity thieves too? It's all money to them. & how much easier is it to trade stolen data on the dark web with cryptocurrencies these days? Nope, there's no good side to this shit show.

      • Re:

        Ransomware incentivizes companies to secure their systems, which leads to less data compromised and less identity theft.

        I used to get notices several times each year that my personal info was lost in a compromise. But with the rise of ransomware, that hasn't happened to me since 2019.

        Companies are fixing their systems because they can no longer externalize the cost of poor security.

    • Re: "Oh noez it wuz de haxx0rz!"

      Yes. Consequences. All those idiots who had the poor sense to be hospitalized at places vulnerable to unpatched zero day exploits targeted by well-funded black hat groups in Eastern Europe. Shouldâ(TM)ve had that stroke somewhere else!

      Youâ(TM)re either a sad edgelord, donâ(TM)t know what the word âoeconsequencesâ means, or are morally bankrupt and should cease contact with other humans until you address that.

    • Re:

      What makes you so sure the ransomware doesn't also exfiltrate the data so it can be sold to 'identity thieves'?

    • Re:

      I miss the good old days of ransomware. When they only pretended to do the encryption part and expected people to pay to remove a pop up window.

• • Re:

    Yes, but 'Today's hackers don't require you to fill out bank paperwork because you are withdrawing large sums of cash to pay a ransom because you didn't spend money on IT security' would not be as inflamatory headline.

  • Re:

    This is incredibly misleading. Less than 10 pieces of ransomware had ever existed before cryptocurrencies. They turned ransomware from an ultra-rare curio of the malware world into a mainstream bread-and-butter moneymaker.

    • Re:

      This.

      I have been Posting about this incestuous relationship between Cryptocurrency and RansomWare for several years now.

      Get rid of Cryptocurrency, and Ransomware will all but vanish in no time.

  • Re:

    But it wasn't until last half decade or so that ransomware gained the ability to use off the shelf encryption technology to actually mess with the data. They used to just be scareware.

• ›

  ..are what keeps the major cryptocurrencies from crashing to zero. Even when the speculation market gets completely spooked and panic selling ensues, there's still demand created by criminals who have no other means of moving their ill-gotten gains. Crime is essentially the backbone of the cryptocurrency economy - it isn't the entire organism, but it keeps it from collapsing.

  • 1 hidden comment

  • ..are what keeps the major cryptocurrencies from crashing to zero. Even when the speculation market gets completely spooked and panic selling ensues, there's still demand created by criminals who have no other means of moving their ill-gotten gains. Crime is essentially the backbone of the cryptocurrency economy - it isn't the entire organism, but it keeps it from collapsing.

    Exactly. At some point, regulation will result in making it difficult to convert the gains into real cash, lessening the demand for it and what sustains the price. No doubt the means to convert it will still exist, but the traceability will make it a lot harder to cover tracks once governments step in and make it costly for companies to accept crypto without vetting it first.

    • Re:

      I think you are being a bit naive if you believe that the people who author our laws are interested in stamping out money laundering. Many of them rely on it themselves to avoid paying taxes, or are beholden to others that do. Witness things like the The Panama Papers [wikipedia.org] and similar revelations in the past few years.

      Even before cryptocurrency this was apparent. Why is it that monies transferred to offshore accounts have been treated as untraceable? It's not for lack of capability, since computer transactions a

  • Re:

    Yes, pretty much. In essence any currency is worthless and will pretty fast crash to zero. The influx of "greater fools" can ultimately not stop or prevent that. What gives it value is that it is being used as a currency. This points to significant criminal activity because that is the only actual use all the cryptocurrencies have.

  • Re:

    So they can still use it to... barter for... crimes? I'm not sure that's well thought out.
• Ransomware would not be a viable and successful business model had so many companies and organizations not decided to pay ransom. As long as companies gamble on saving money by not keeping offline backups and not investing in technical security (rather than snake oil security products and cover-your-ass policies), but then pay ransom when they loose the gamble, the ransomware business with continue to thrive - regardless of what "currency" (or goods) the ransom is paid in.

  • Re:

    Indeed. I think that we need to make paying ransom for these cases illegal, with the ones doing it going to prison when found out. Just call it "financing a criminal enterprise".

  • Re:

    Yes and rape wouldn't be viable if so many women decided not to prosecute. By all means, let's blame them.

• Prior to the release and spread of TOR by our IC and the creation of the TOR Hidden Services system, the feds and our international partners had largely won the war on CP online. It was a crime that existed on the periphery and was easy to track down. That's not even counting the other contraband markets that flourish on TOR thanks to TOR Hidden Services.

  This is why I have always believed that Bitcoin was created by the US IC as an apology to law enforcement for unleashing the absolute legal nightmare that

  • Re:

    Not that I disagree with what I think is your takeaway point, that criminals often make mistakes when using obfuscation techniques such as TOR and VPN - but even when misused, they still present an obstacle to be overcome. Does poor ITSEC give the FBI et. al. a new set of tools to go after criminals? Absolutely!

    There's a difference here, though - TOR and VPN's were created as a response to the excesses of the RIAA/MPAA and more importantly, vast numbers of humans trapped in politically repressive environ

    • That's not why TOR was created

      There's a difference here, though - TOR and VPN's were created as a response to the excesses of the RIAA/MPAA

      Read the actual history, summarized here [wikipedia.org].

      TL;DR, the military created TOR to protect US intelligence communications in hostile foreign countries. In other words, it was absolutely not created with altruistic reasons in mind, and has been a cancer on the West where it essentially has crippled law enforcement's ability to reliably stop CP distribution.

      Has it ever occurred to any of its advocates that th

      • Re:

        Hmmm . . . you're right. TOR was created for military use first, sort of like TCP/IP. My mistake.

        I'm still not sure I can see my way clear to say bitcoin is a government conspiracy, at least no more than Twitter or Facebook are. After all, they use TCP/IP, a military communications protocol developed by the Defense Advanced Research Projects Agency. Come to think of it, email (SMTP) relies upon TCP/IP. Hey, come to think of it, HTTP and HTTPS both lie on top of the TCP/IP layer. Uh . . . Slashdot is

• • Re:

    I blame all Australian crypto-currency users./rimshot [instantrimshot.com].

  • Re:

    Of course. It's just like the Schwartz, it's got an up side and a down side.
• So far, cryptocurrencies have proved to be good for speculating, for money laundering, and for extortion. After more than 13 years. And almost no one uses them as a replacement for ordinary currencies - which is, apparently, what they were developed for.

• "Correlation does not mean causation"

  Crypto may well not have caused ransomware, maybe it's just an attractive medium for ransoms.

  • Re:

    Reading comprehension fail. The headline said it was the cause of the epidemic, not ransomware itself. Ransomware was a great criminal idea, until payment because an obvious problem. Enter crypto, and for a time, ransomware is booming, until it becomes obviously problematic.

• In other news, the Internet gave birth to computer viruses, spam, scamming from across the globe, and cryptocurrency itself, along with social media, which has given birth to spreading extremism and eroding democracy.
  The development of pharmaceuticals gave birth to the opioid epidemic, television gave birth to the obesity epidemic, and the automobile gave birth to a million road deaths per year.

  • Re:

    I was recently ransomwared by a Nigerian prince who rick-rolled me and told me all my base are belong to him.
• This time you can pay to get your resources back. Next time you might not. So secure your network and start doing backups.