"Over 40 Organizations Breached by Conti Ransomware Attacks in a Month"

The Conti cybercrime group has become highly organized, running one of the most aggressive ransomware operations. As a result, affiliates were able to breach over 40 firms in a month. Security researchers dubbed the hacking operation ARMattack and described it as one of the group's most productive and effective operations. According to Group-IB analysts, one of Conti's "most productive campaigns" took place between November 17 and December 20, 2021. During incident response operations, they discovered the group's month-long hacking campaign. Conti affiliates were able to compromise more than 40 firms in diverse industries across a wide range of geographies during the operation, with an emphasis on American-based businesses. Group-IB has been investigating Conti's "working hours" using information obtained from public sources, such as leaked internal gang communications. Conti members, according to the researchers, have an average daily activity level of 14 hours, excluding the New Year's break, which explains their effectiveness. They also point out that the group operates as a real business, with people assigned to hiring, research and development, managing OSINT jobs, and providing customer support. This article continues to discuss findings surrounding the Conti cybercrime group's activities and operations. 

CyberIntelMag reports "Over 40 Organizations Breached by Conti Ransomware Attacks in a Month"