Monti is a ransomware group that emerged in June 2022, shortly after the collapse of the Conti ransomware operation. The group initially gained notoriety for closely imitating Conti's tactics, tools, and procedures, including reusing leaked Conti source code and replicating their website structure. While heavily influenced by Conti, Monti is considered a separate entity that capitalized on the void left by Conti rather than a direct rebrand. Since its inception, Monti has evolved its capabilities, introducing new Linux-based ransomware variants that exhibit significant deviations from the original Conti-based code. Their primary motivation is financial gain through data encryption and extortion. Monti uniquely presents its activities as 'penetration testing' to expose security flaws in victim networks, publishing stolen data on a 'Wall of Shame' site if ransom demands are not met. The group is frequently confused with Conti due to its derivative nature but operates independently.

Sectores atacados

URLs nuevas detectadas en IntelTracker