honestly, i'd totally believe that a ransomware team has better ui than many legit businesses, the bar is on the floor
@BillAnt10 сағат бұрын
If companies would just invest in a good real-time incremental backup, none of this sh*t would be happening. Got infected? No problem, just roll it back by a couple of hours to the encrypted data. If have software monitoring any encryption taking place in real time.
@BillAnt10 сағат бұрын
If companies would just invest in a real-time incremental backup, none of this sh*t would be happening. Got infected? No problem, just roll it back by a couple of hours to the encrypted data. If have software monitoring any encryption taking place in real time.
@billant210 сағат бұрын
If companies would just invest in a real-time incremental backup, none of this sh*t would be happening. Got infected? No problem, just roll it back by a couple of hours to the encrypted data. If have software monitoring any encryption taking place in real time.
@bobbyrandomguy148918 сағат бұрын
Man, that last convo was bizarre!! Interesting video.
@jmd48915 сағат бұрын
Was clearly trying to talk him up to get more info out of them.
@bobbyrandomguy148910 сағат бұрын
@jmd489 yeah that's a good possibility. They just seemed like old friends or something lmfao
@billant210 сағат бұрын
If companies would just invest in a real-time incremental backup, none of this sh*t would be happening. Got infected? No problem, just roll it back by a couple of hours to the encrypted data. Or have monitoring software of any encryption taking place in real time.
@BillAnt10 сағат бұрын
If companies would just invest in a real-time incremental backup, none of this sh*t would be happening. Got infected? No problem, just roll it back by a couple of hours to the encrypted data. Or have monitoring software of any encryption taking place in real time.
@CoolProveIt11 сағат бұрын
"we have mcafee and symantec" and nothing prevented this :(" Peak.
@TTVBretZ20 сағат бұрын
I wonder how many of those are IT guys just fucking with them 😂
@logiciananimal19 сағат бұрын
Or law enforcement doing a sting.
@robertgowdey19 сағат бұрын
@@logiciananimal A sting how? It's all bitcoin and TOR.
@Oldladywithastick19 сағат бұрын
@@robertgowdeyAs if bitcoin would be 100% anonymous
@logiciananimal19 сағат бұрын
@@robertgowdey Delaying tactics by LE to track down where the bad guys are.
@BillAnt10 сағат бұрын
@@logiciananimal - Probably drying on a highway with a burner phone. Tracking nowadays is really difficult with good opsec.
@balsalmalberto808618 сағат бұрын
I would watch of 24 hour stream of this with a Costco deluxe sized bag of popcorn
@Bempus16 сағат бұрын
Compliments goes a long way, if you're positive and kind you're more likely to buy more time (as shown in the conversation). There were never any hesitation from the hacker's side and the victims bought almost a month of time to try to solve the problem themselves. It might just have been a strategy from the victims.
@jmd48915 сағат бұрын
this 100%
@darkshoxx19 сағат бұрын
26:45 yeah it sounds like they exchanged phone numbers and started dating 😆. Man that was bizarre
@Alfred-Neuman18 сағат бұрын
He finally found a service that offer a good customer support so that understandable... lol
@TylerRamsbey19 сағат бұрын
Excellent stuff. Thanks sir!
@DVLANetwork11 сағат бұрын
The company I work for got hit a few months ago and we never even contacted them. Don't negotiate with the criminals
@Walter_11 сағат бұрын
Yeah also: doing full backups from a nearly air sealed pc that uses SSH to login to the actual servers is nearly unbeatable. From compromising the entire network perspective you can only stop the backup from working, which you can set up to trigger an alarm, but they can't encrypt/delete the backup. Only problem left would be data leakage, idk how to solve that.
@stronglift1873Сағат бұрын
Yes but some companies actually have costumers and work with data that would hurt them if it gets online. Then if you just ignore them, youre in an even bigger mess. Even if you have backups because they just gonna leak the data. And i dont know for sure who the real criminals are, the ones that do these attacks, or the ones that are supposed to keep our data safe but fail so for years and years and were getting slapped with data leak after data leak. If you run a company you should be liable if the data you are supposed to keep safe gets leaked
@mathewrogers543016 сағат бұрын
Hey John we need live KZbin session about this...awesome content
@sergeyvas12317 сағат бұрын
I think important point was missed here. Where these resources gets the chats data from?
@p2l17 сағат бұрын
could be leaked, there could be an insider or they were probably the person to start the chat
@layneburkhead322013 сағат бұрын
Overwriting memory is too complicated for a SOC analyst?
@alejandroalzatesanchez8 сағат бұрын
The fact that also tells you how they hacked into your system is quite dystopian. :|
@ThrowawayAccountToComment18 сағат бұрын
This would be reallly interesting to stream!
@OsmanFarid-e9m20 сағат бұрын
it's very important video good job. John
@Miqueljuanserra18 сағат бұрын
Alternative title for this video: "Just for laugh". Love it.
@Macj70715 сағат бұрын
good stuff, crazy crazy crazy stuff.
@fearmaiden.2111 сағат бұрын
I refuse to believe those guys are from IT, really!?
@jacquesduplessis617518 сағат бұрын
Cool video, some of those chats were really funny 😆
@justingolden8710 сағат бұрын
Maybe last guy was complimenting to just buy time and had no interest in paying from get go?
@SmallGuyonTop15 сағат бұрын
I received such a threat. I told them to prove they had my information by telling me the address where I am located. Crickets... You can't just Google me and find me. I am off the grid.
@Mario583a10 сағат бұрын
Grizzly Adams, that you?
@darkshoxx20 сағат бұрын
1:00 now to stop you right there for a second, (assuming this isn't answered later in the video). What ARE you supposed to do? What is the best call? Do I DO contact the police, other law-enforcement, cybersecurity companies, Huntress?
@logiciananimal19 сағат бұрын
I would encourage your business, if you have one, to have a preexisting policy. IMO rewarding criminals is not a good idea and ignore the "No police warning". But talk to legal; they probably should have a lot to say here. For yourself, that's a bit more complicated.
@DarkForce202417 сағат бұрын
@@logiciananimal Right. That's what I've always wondered. Oh, your a criminal, I TOTALLY trust that you won't attack me again and you won't publish my data after I paid you. Do people actually believe that?
@darkshoxx15 сағат бұрын
@@DarkForce2024 @logiciananiman I believe to remember from a conference talk that renowned hacker groups are actually guaranteed to hold their end of the deal. It sounds counterintuitive but they build a reputation as a group that will hold their end of the deal, therefore it makes sense to pay, because they have established that reputation. Similar to what John says at 3:25 about them having a business with a "good reputation". Not good as in "a lawful force of good in the world" but good reputation as in "is known to follow through"
@Shelleloch14 сағат бұрын
@@DarkForce2024The last thing an enterprising ransomware writer wants to be known as is "the one that doesn't release follow through". If you don't follow through, you get one, maybe two payments before word gets out that you're not worth paying. The "release what is being held hostage" part is really the most important part of your job, and when you're scamming significantly sized businesses, you can't just hope that your victim will not tell every one of their corporate contacts about "the one not worth paying".
@HerEvilTwin19 сағат бұрын
Super interesting and entertaining video. Would love a part 2
@CrittingOut10 сағат бұрын
This is very interesting to see
@AnonymousPhucker17 сағат бұрын
flare is also tip of horse junk which expands during the session
@LDowning019018 сағат бұрын
21:31 please live stream this one time!
@betterjesusofficial15 сағат бұрын
Fascinating stuff more videos like this please
@Miglen21 сағат бұрын
Pretty cool video JOhn :)
@testcss532915 сағат бұрын
Is it safe to access ransomware sites like John Hammond did?
@min3craftpolska51410 сағат бұрын
Most likely yes unless you download shady programs.
@danielthompson30822 сағат бұрын
If I encrypt my information (with windows Bitlocker for example ), does that deny hackers access to the plaintext on its face? I know they can just get the encryption key, but how much more difficult would it be?
@cTomcTom21 сағат бұрын
Thanks so much I appreciate you 🎉
@mrup365014 сағат бұрын
wow, what a great video
@darkshoxx19 сағат бұрын
21:30 Yes please.
@pmcforever968619 сағат бұрын
Agreed
@Frankiejav15 сағат бұрын
Although funny I believe they praise these threat actors to buy some time
@jra7y11_619 сағат бұрын
Greatt Video !
@topabove6 сағат бұрын
this is better ai gpt chat roleplay
@плохойбрат19 сағат бұрын
The guy @26:13 is getting fired😂
@Hamst3r-hacker20 сағат бұрын
Oh really ? Honestly the soc team in the video , are noob 😂
@mrwancool864820 сағат бұрын
He was obviously trolling them he wasn’t serious
@Rocky-g2i20 сағат бұрын
this might be interesting
@DjPsYcOtIc20 сағат бұрын
Cheers
@י̈ד21 сағат бұрын
hello
@Mrman1990s21 сағат бұрын
😢
@MacGuffin18 сағат бұрын
moar
@زهراء-ف6ق4خ21 сағат бұрын
😅ش
@balarab121 сағат бұрын
خ🤔
@hiteshrx202419 сағат бұрын
@_JohnHammond , sir this is one funniest videos on this channel 😅