Ngrok

As discussed in my previous post, the Conti Files Part I, a big leak at the start of the war in Ukraine struck a serious blow to the Conti organization. Although there are still speculations about the reason behind the leak, most experts think the leak is related to Conti’s threat to attack Western targets in response to any cyber attacks on the Russian government or on the country’s critical infrastructure. This threat was not appreciated by some of their “ransomware-as-a-service” (RaaS) clients that ranged all over Eastern Europe, especially not the ones in Ukraine, and the files seem to be leaked by a Ukrainian security researcher.