Posted on 06/07/2021 3:08:51 PM PDT by Navy Patriot
...
Deputy Attorney General Lisa Monaco said investigators had seized 63.7 Bitcoins, now valued at about $2.3 million, paid by Colonial (COLPI.UL) after last month's hack of its systems that led to massive shortages at U.S. East Coast gas stations.
...
An affidavit filed on Monday said the FBI was in possession of a private key to unlock the hackers' Bitcoin wallet. It was unclear how the FBI gained access to this key.
...
"Today, we've turned the tables on DarkSide," said Monaco, referring to a ransomware group widely believed to have been behind the crippling fuel pipeline attack.
(Excerpt) Read more at reuters.com ...
Try our new, Man_in_the_Middle service.
It's quick.
It's easy.
What could possibly go wrong?
Back in the day - remote, dumb terminals and a centralized computer - I spoofed an ASCII login screen with a simple BASIC program that appeared when I apparently logged out.
As a new user attempted to login, it asked for the password, but it again appeared to fail; so it showed the normal looking Try Again message.
This time, after the thing failed again, the normal-looking logoff screen appeared; and logged off from my account.
The frustrated user, of which there were many already, merely tried to login again - which then worked.
I never did figure out what to do with those stolen passwords, as I barely knew enough to run my authentic programs at the time. I had no idea how to phish for anything else.
However recent revalations of the Feds covertly supplying "totally secure" encrypted phones to numerous narco traffickers, human traffickers and selected terrorists points to the Feds being the instigators and the initiators of these high tech secure exploits.
Reminds me of Mossad covertly selling cellphones to al Qaeda Terrorists at bargain prices, ... I got a bang out of that.
So did they!
Still really good at False Flag and Knife in Back detection, though.
Yes
Assuming I was not in fact a drug kingpin.
I don’t defend asset forfeiture at all. Totally immoral
And unconstitutional. So I am not saying a standard bank is PERFECTLY safe.
But unless I am convicted of the crime I will get it back. It is wrong to have it taken and it is wrong I need attorneys and money to get it back.
But with crypto there is nowhere to even start.
Can you explain or point me in the right direction to understand “poison the wallet”?
I have never heard that term and can’t fathom what you mean by that.
Your post is replying to the original post so I am unable to get background and context to what you are talking about.
They don’t need ‘decryption’ - they just needed one arm to twist...
There are D-level dumbasses with the same ransomware tools that Darkside has (which came from elsewhere to begin with), so that these 'tools' who tried to burn Colonial were perhaps not NK/PLA but more likely Eastern Europe or even Africa -- although those in the veldt are mostly Chinese-run boilerrooms.
That still doesn’t make any sense to me.
Are you mixing up addresss/wallet? Are you suggesting they created a fake wallet application like their own version of Wasabi, Bitpay, Electrum, etc.. and then tricked the bad guys into using it? How would they do that?
Are you suggesting they somehow created an address that did something weird and had the bad guys receive BTC from it and that somehow did something to compromise them?
I have have a moderate understanding of how Bitcoin works and I can’t tell if you understand it WAY more than me and just aren’t explaining yourself adequately or you don’t understand it at all.
It's sorta like breaking into an Iphone. Nobody can seem to do it until a hacker does it. I'm sure the NSA and CIA can do it before breakfast but they don't want you to know that can get everything on your phone. If one guy can do it, a hundred guys can do it.
BTW, this is why voting machines can't be on the internet.
I noted that this was not likely Darkside but hangers-on that had Darkside tools given Darkside went into franchising mode half-a-year ago. Colonial was not "darksupp", but some slav squat script incel "franchisee" (lol) who thought Bitcoin transactions were untraceable.
DARKSIDE Ransomware Service"Beginning in November 2020, the Russian-speaking actor "darksupp" advertised DARKSIDE RaaS on the Russian-language forums exploit.in and xss.is. In April 2021, darksupp posted an update for the "Darkside 2.0" RaaS that included several new features and a description of the types of partners and services they were currently seeking (Table 1). Affiliates retain a percentage of the ransom fee from each victim. Based on forum advertisements, the RaaS operators take 25% for ransom fees less than $500,000, but this decreases to 10 percent for ransom fees greater than $5 million."
These wodka-slurping sloping-heads not only took alphabet bait - webhook, plink, and sync-er - but in doing so gave away "darksupp" loc, his circle of operations, and his server farm:
"The DarkSide ransomware operation has allegedly shut down after the threat actors lost access to servers and their cryptocurrency was transferred to an unknown wallet.""In the post, 'Unkn' shared a message allegedly from DarkSide explaining how the threat actors lost access to their public data leak site, payment servers, and CDN servers due to law enforcement action."
The Russians already acknowledged it’s a Russian group... claimed they arrested the miscreants on some other case, (but probably just renamed and repackaged them.)
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.