 |
| Hackers avoid attacks on Eastern European countries |
According to the network security website KerbyonSecurity, hackers are afraid to attack Russian-speaking computers.
The discovery began with a conversation on Twitter, during which the site's founder indicated that computers running in Russian or any language derived from it would not be affected by ransomware or virus attacks.
The report said DarkSide had prevented its partners from attacking state-owned computers in the former Soviet Union.
The DarkSide Group was reportedly responsible for the Colonial pipeline attack that disrupted the company's pipeline.
Colonial pipelines supplied natural gas and oil to all areas of the southeastern United States, so this breakthrough drove up oil prices.
The company paid Darkside about 75 bitcoins to decrypt their files and get back to work, but the organization later apologized for the damage it had caused, saying their attack had no political purpose.
The group wants to take advantage of only large and large companies without political influence. Nor is it a politically active group. He does not want to disturb people's lives, so he prevents his accomplices from carrying out such attacks in the future.
But this group follows the same rules as other cybercriminal groups in that it does not attack any computer in the former Soviet Union, and of course not only for political reasons.
Hackers avoid attacks on Russian computers:
We have to agree from the start that the majority of hackers and organized cybercrime teams are mostly Russian.
They are exploiting loopholes in Russian law, because as long as Russian citizens do not file a complaint against them, they will not be prosecuted by the Russian security services.
Hence, they avoid using Russian equipment to ensure their personal safety and, of course, protect their profits.
The organization relies on virus-specific conditional programming which prevents the virus from running in Russian on any device.
This is similar to what happens in a virtual system where the virus avoids installing itself in the virtual machine.
But can you count on changing your computer's language to protect it from attacks?
Of course this step is to protect the hardware as the virus gives people the illusion that the computer belongs to the Russian user, but this is temporary protection.
If everyone speaks a different language, these groups can always change the way they work or find a different way to learn about Russian equipment.
In addition, many “non-Russian” organized groups do not respect this rule and face risks from jurisdictions, so Russian groups can choose to take the same risks.
But for now, the potential gains from Russian IT groups are not worth the risk.