Comment by mpetrovich
1 day ago
If that’s true and they do intend on shredding their copy on sale, what stops GitHub from buying it back themselves? (through a proxy, obv)
1 day ago
If that’s true and they do intend on shredding their copy on sale, what stops GitHub from buying it back themselves? (through a proxy, obv)
Nothing, this is one of the most common types of ransomware going on right now, exfiltration only extortion.
I probably wouldn't believe that "shredding". Also there will be legal consequences I think?
counter intuitively criminal ransomware gangs operate on trust. They have to ensure that we believe they really will shred it, otherwise no victim will ever pay a ransom ever again.
Therefore one way to weaken these criminals would be to weaken this trust factor. In a way therefore comments like "can we actually believe they will really shred it" goes towards this aim.
I have to wonder what criminal hacking gangs that do not operate on trust would do. Would it be like the replacement of organized crime (mafia) with the arguably wider damaging unorganized violent drug gangs?
And if the company doesn’t pay it they would therefore have to go through with their threat to publish it.
More than likely they will just claim that the company paid the ransom and never release the code (or at least not immediately).