sk8thow8 t1_ja0mp57 wrote on February 25, 2023 at 11:19 PM

Reply to comment by servia23 in LockBit leaks 44GB of Royal Mail's data and sets fresh £33 million ransom by tyw7

Probably not, actually. Their entire business model relies on people paying to unencrypt the files. As soon as they don't hold up their end of the bargain, they'll never be paid by anyone ever again.

servia23 t1_ja29njo wrote on February 26, 2023 at 8:23 AM

You forget they have unencrypted sensitive data. The business is not only about unencrypting, it can also be about preventing the leak of the files themselves.
That's why it never makes sense to pay a ransom because they can eternally ask you for more to not release the files.

sk8thow8 t1_ja3pyxz wrote on February 26, 2023 at 4:54 PM

And If you don't pay the ransom, it guarantees the files are released. How's that better?

Believe it or not, these large ransomware groups do release files and don't keep bleeding the same victims repeatedly. They make millions a year doing these ransoms. Like I said, they only get paid because they have a history of holding up their end of the deal. The first report that says LockBit group doesn't release the files or continues the ransom after payment will be the last ransom they're ever paid.

SomethingMatter t1_ja2xn5i wrote on February 26, 2023 at 1:23 PM

And when business starts to dry up? They still have the data. You can’t pay them because that’s only kicks they can down the road.