Hacker News new | ask | show | jobs
by wyldfire 3321 days ago
Earlier reports I'd heard said that this group was unprepared or poorly prepared to handle the incoming ransom. Many of these ransomware campaigns use a fully automated mechanism to deliver keys upon payment, this group did not.
2 comments
j_s 3320 days ago
One of the main pain points was using the same Bitcoin address as a destination rather than unique-per-victim... it gets confusing to prove who paid.
link
koolba 3321 days ago
How does that work in practice? Do the decryption keys get stored in the block chain as well or out of band?
link
pas 3320 days ago
out-of-band, probably sent via email or managed through the "malware app" itself.
link