Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
×
Crime Businesses

Ransomware Gang Wants To Short the Stock Price of Their Victims (therecord.media) 84

The operators of the Darkside ransomware are expanding their extortion tactics with a new technique aimed at companies that are listed on NASDAQ or other stock exchanges. From a report: In a message posted on their dark web portal, the Darkside crew said it is willing to notify crooked market traders in advance so they can short a company's stock price before they list its name on their website as a victim. The Darkside crew believes that the negative impact of having a traded company's name listed on its website would be enough to cause its stock price to fall and for a crooked trader to make a profit.

"While other ransomware families previously discussed how to leverage the effect of a publicly disclosed cyber attack on the stock market, they have never made it their official attack vector," Dmitry Smilyanets, threat intel analyst at Recorded Future, told The Record today. "DarkSide becomes the first ransomware variant to make it formal." However, the announcement also serves as an indirect method to threaten hacked companies that not paying the ransom demand could result in negative press large enough to impact their market listings and enough to push some victims into paying the asked ransom.

This discussion has been archived. No new comments can be posted.

Ransomware Gang Wants To Short the Stock Price of Their Victims

Comments Filter:
  • interesting (Score:5, Interesting)

    by Actually, I do RTFA ( 1058596 ) on Thursday April 22, 2021 @01:46PM (#61301642)

    If they've been successful for N times in a row, I wonder how often they'll include a big name just to jigger the stock price.

    • by nucrash ( 549705 )

      The people who typically get caught in these schemes are the ones that don't practice self control. They too far too quick and draw entirely too much attention to themselves.

      On the other hand, these people could end up with a misinformation gambit going on that could create complete and utter chaos.

      • by gweihir ( 88907 )

        Indeed. It is good criminal practice to never, ever escalate the size and damage of the operation to anything higher than "nuisance". Anything else will make scary people come after them reliably.

        • by rtb61 ( 674572 )

          More likely they will be paid by vulture capitalists to do it on purpose, more than likely some have already been paid by vulture capitalists to do it on purpose. Insider trading based upon hacked data or extortion schemes like Epstein the kiddy fiddler, are bound to happen and already have happened. Holding crypto puts a target on your back, they want that password from you, they will get it. Growing corruption is crippling the US economy.

  • A bad end (Score:5, Interesting)

    by AlanObject ( 3603453 ) on Thursday April 22, 2021 @01:53PM (#61301666)

    I have to wonder just how long it will be before one of these ransomware gangs piss off the wrong people. I can well imagine a rich victim of their arrogant schemes wanting revenge and then putting up the money needed to a) find them, and b) raid them. With rules of engagement not concerned with petty things like legal rights (whatever those might be).

    I remember when Ross Perot hired mercenaries to rescue his people in Iran. If that could happen then I think what I am describing could.

    • Re:A bad end (Score:4, Interesting)

      by Aighearach ( 97333 ) on Thursday April 22, 2021 @02:01PM (#61301710)

      With this new threat, if victim companies don't attempt aggressive counter-measures, they might be negligent.

    • Re:A bad end (Score:4, Interesting)

      by PPH ( 736903 ) on Thursday April 22, 2021 @02:03PM (#61301716)

      Well, this could be it. Ransomware gang feeds the name of a recalcitrant victim to some 'crooked market traders'. Then the latter get caught in a short squeeze and lose money.

      If some third party can spoof communications from the ransomware gang to the traders they can sucker them into such a position. Losses mount and the traders go looking for someone's head. We just pull up an easy chair with a bowl of popcorn.

      • Well, this could be it. Ransomware gang feeds the name of a recalcitrant victim to some 'crooked market traders'. Then the latter get caught in a short squeeze and lose money.

        Or, more likely, the SEC looks into who profited from the shorting the stock of a company named as a ransomware gang, sees the "crooked market trader" has made a lot of money on it and pursues the trader for insider trading.

        • Well, this could be it. Ransomware gang feeds the name of a recalcitrant victim to some 'crooked market traders'. Then the latter get caught in a short squeeze and lose money.

          Or, more likely, the SEC looks into who profited from the shorting the stock of a company named as a ransomware gang, sees the "crooked market trader" has made a lot of money on it and pursues the trader for insider trading.

          Where does the ransomware gang find their crooked trader to go in with on the extortion attempt? It's not like you can google "crooked traders who want insider tips" so more likely it will be someone they know and where both sides trust the other. Then the gang tells the target "pay up or else" and of course the target goes to the law, the gang does its thing and the trader makes a bunch of money not knowing the SEC is looking closely at trades in stock X and its options (casue options are where the real

          • Basically, the gang just has to contact a few questionable traders and give them the information. If those traders act on the insider information, they are crooked traders by definition. They may offer the information to a few people in /r/WallStreetBets who say things like "Short selling is how the rich game the system". Someone with that opinion, provided with information that would allow them to "game the system" like the rich, may very well act on it. They may not realize or care that they are engaging
            • Basically, the gang just has to contact a few questionable traders and give them the information. If those traders act on the insider information, they are crooked traders by definition. They may offer the information to a few people in /r/WallStreetBets who say things like "Short selling is how the rich game the system". Someone with that opinion, provided with information that would allow them to "game the system" like the rich, may very well act on it. They may not realize or care that they are engaging in insider trading and use the information to sell the stock short before the public release of the information.

              The problem is a few shorts aren't going to do much unless they can take a significant position; and if they start making comments in an attempt to drive down the price, before the hack is revealed, the traders risk exposure. I just don't see it as that credible a threat.

          • It's not like you can google "crooked traders who want insider tips"

            Well, no, that search won't work.

            You misspelled "lawmaker".

      • Well, this could be it. Ransomware gang feeds the name of a recalcitrant victim to some 'crooked market traders'. Then the latter get caught in a short squeeze and lose money.

        There would be no squeeze. Shorting is just “borrowing” a stock and selling it with the agreement to purchase it later. Then if it drops they can pocket the difference but the gain is capped as stocks don’t generally go negative and losses could be infinite since there is no price limit on stocks. The squeeze happens if there are liquidity issues such as buying enough stock to cover their losses is enough to significantly drive up the price. So they would need billions of dollars or mo

    • by hawk ( 1151 )

      >I have to wonder just how long it will be before one of these
      >ransomware gangs piss off the wrong people.

      "You utter *moron* !!! How could it *possibly* not cross your mind that 'columcart.com' could mean 'Columbian Cartel' ???"

    • Well you'll note that none of the victims belong to the illegal drug industry, or the mob. Two groups that have money and no scruples. You'll also note none of the victims are the military.

      • Well you'll note that none of the victims belong to the illegal drug industry, or the mob. Two groups that have money and no scruples. You'll also note none of the victims are the military.

        The militaries of most countries with civilian control of the armed forces would be a safe target. While they clearly have great ability to kill people around the world, they need permission to use it. The US military, in particular, would be completely unable to respond with force. They might sic their intelligence people on the problem and then feed information to law enforcement, but that's about all they could do.

        I suppose if you directly attacked a covert action unit, there's a slim chance they might

    • I have to wonder just how long it will be before one of these ransomware gangs piss off the wrong people. I can well imagine a...

      I think you've been watching too many movies.
      Organised crime gangs are a lot more familiar with illegal 'rules of engagement' than most 'rich victims'. This is why the whole scam works.

      I remember when Ross Perot...

      The difference here is that lives were at risk. Ransomware is specifically targeted to be just valuable enough to worth doing, but not valuable enough that anyone would waste time pursuing. If you run a $100M operation and that is put at risk for a $20k ransom, you pay the $20k. The ransom is deliberately set low enough tha

      • The difference here is that lives were at risk. Ransomware is specifically targeted to be just valuable enough to worth doing, but not valuable enough that anyone would waste time pursuing.

        The known, documented attacks against hospitals I think can be described as high value where lives are at risk. And it is an increasing trend.

        The example of Ross Perot was just simply that money is power, and there will be people with power who are fed up with waiting for the government to solve it for them.

        • The example of Ross Perot was just simply that money is power, and there will be people with power who are fed up with waiting for the government to solve it for them.

          I'm down with that. The welfare state, while noble in its intention, has created a generation of people dependent on the government to do everything for them.

    • by gweihir ( 88907 )

      They may have done that recently with Apple. I would be very surprised if Apple does not have a few no-ethics mercenaries they can contact. And Apple sure has the resources to identify the attackers. If nothing else helps, offer $10M and protection to anybody that rats the others out. Compared to the damage done, that is peanuts. In the end, the ransomware business model has one fatal flaw: It causes massively more damage than the criminals earn with it. Criminal "business models" of that type have a tenden

  • by Anonymous Coward

    But the wealthy people who pull the strings of the SEC and Wallstreet are going to be far less forgiving. I can imagine the SEC seeing a red flag on a bunch of shorts before an major announcement. Insider trading is no joke, unless you're wealthy and well connected, then it's business as usual.

    Stick to ripping off credit card companies and small businesses and other groups that either don't care or don't have the power to squash you.

    • Insider trading is no joke, unless you're wealthy and well connected, then it's business as usual.

      Funny. The clarity you've provided here, actually proves just how much of a joke insider trading, actually is.

  • by drew_92123 ( 213321 ) on Thursday April 22, 2021 @02:16PM (#61301762)

    Just get rid of shorting... it shouldn't exist in the first place as it's mainly use by the wealthy to game the system.

    • Re: (Score:3, Informative)

      by theskipper ( 461997 )

      Approximately half of all volume on stock exchanges is short activity and without it the markets would not be able to function. Since market makers do not generally keep inventory, to provide liquidity to buyers they need to be able to short the issue. Options market makers require shorting so they can delta hedge their positions, the risk would be too high to sell naked and spreads would vanish.

      There are strict rules regarding shorting in general and Finra requires periodic reporting. You can find an ex

      • by ceoyoyo ( 59147 )

        So much jargon. It makes the whole thing sound reasonable.

        Translation: shorts are necessary so rich dudes can sell stock without actually owning any. It's basically why bookies are necessary.

        Of course the stock market would function without shorts. Most markets do. There's a valid argument that it wouldn't be able to respond to events as quickly, and thus would be less efficient.

        • So much jargon. It makes the whole thing sound reasonable.

          It is reasonable. You should bother to understand the jargon. In particular, you should learn about liquidity, why it matters, and what kinds of bad things happen in markets that don't have enough of it. You should also learn what market makers are and why they're essential to a healthy and effective market.

          • by ceoyoyo ( 59147 )

            Ah, the finance nerds. You can't post anything about the stock market without getting a bunch of these content free "you should learn about" posts.

            • Ah, the finance nerds. You can't post anything about the stock market without getting a bunch of these content free "you should learn about" posts.

              Imagine posting about parsers and having people tell you that to comment sensibly you really need to understand top down vs recursive descent vs LL, etc.

              When you're commenting on a complex topic without understanding what you're talking about, people who do know what they're talking about have only three choices (a) ignore you and let your (incorrect) points stand, (b) educate you or (c) tell you that you need to educate yourself. (b) is the best option, of course, but only if the topic is simple enough

        • So much jargon. It makes the whole thing sound reasonable.

          It's very reasonable when you understand how markets work.

          Translation: shorts are necessary so rich dudes can sell stock without actually owning any. It's basically why bookies are necessary.

          And you seemingly don't if that's the translation you came up with.

          • by ceoyoyo ( 59147 )

            Lol. You might want to look up what markets actually are. Not stock markets, markets in general. And don't forget to read about betting markets specifically.

        • "The male inserts his penis into the female's vagina. Upon ejaculation and successful insemination, a gestation period of..."

          "Omg all that jargon it's the stork that bring baybee!!!'

          Best of luck.

    • Just get rid of shorting... it shouldn't exist in the first place as it's mainly use by the wealthy to game the system.

      Ah, so it only affects the wealthy? This should be easy to shut off then.

      We'll get that done right after we pass term limits for lawmakers.

      Oh, and Satan just called. He's looking forward to ice cream after the snowball fight.

    • Shorting is a perfect tool for slowing or stopping a stock from getting to out of hand. also it is a perfect way of making money when a stock that is in an industry that has past it's prime and no longer needed. For example the saddle maker, when cars took over, pouff no longer needed. another one which took me by surprise, the alarm clock maker, once critical mass of cell phones caught on, 1998-2001, the sales of alarm clocks dried up, that was a perfect short.

    • Shorts have a strong incentive to ferret out weak and fraudulent companies. It's not a perfect system, but I think the market would be worse off without it.

  • That kind of pattern of trading is one of the most obvious things market watchdogs look for, and since traders are clearly identified, would be grounds for an easy lawsuit and someone going to jail pronto. I don't know that many traders would be willing to risk that - they aren't protected by "7 proxies" unlike the would-be-hax0rz.

    • Last time that happened, it was called "Enron". That was a long time ago. The SEC is about as effective as a wet noodle, much like the FTC because they are ultimately subject to regulatory capture.

  • So all I need to do is penetrate the Ransomware providers site and insert the name of a company I just shorted.. Then PROFIT$ I read another story lately where even the white hat hackers, their own security wasn't that good. Ironic to say the least...
  • If these folks notify short sellers in advance and those people take advantage of it, the SEC will be sure to investigate. In fact, since these folks announced their intentions, you can be sure the SEC will be taking a close look at trades in companies which are subsequently hit up for a ransom payment.

    If these folks were smart (criminals rarely are), they wouldn't have posted this information but would have simply done what they said they will do. Thus letting the short sellers profit without undue worry

  • Trader is contacted by gang.
    Trader shorts the stock.
    Trader makes money
    SEC looks into who shorted the stock beforehand Trader is charged with insider trading, found guilty, is sentenced to prison and a massive fine.

    The SEC doesn't like insider trading, especially this kind where it is based on knowledge of an illegal act before said act is made public.
    • by gweihir ( 88907 )

      The SEC doesn't like insider trading, especially this kind where it is based on knowledge of an illegal act before said act is made public.

      Indeed. After the first few traders are in prison, nobody will touch this with a 10 foot pole. Also, unless the trader is really sure this is the ransomware gang contacting them, there is a huge risk it is not.

  • by Tempest_2084 ( 605915 ) on Thursday April 22, 2021 @02:30PM (#61301810)
    This is completely off topic but it seems to happen over and over again so this topic is as good as any to ask question: WTF is up with the 'Related Stories" algorithm? Here are the 'related' stories slashdot suggests for this article:

    Trump Tests Positive For COVID-19
    Trump Fires Election Security Director Who Corrected Voter Fraud Disinformation
    House Votes To Impeach President Trump a Historic Second Time
    Trump To Congress: Repeal Section 230 Or I'll Veto Military Funding
    Researchers Launch Open-Source Website To Hunt Down Capitol Insurrectionists

    What do any of these have to do with the story at hand? I swear Slashdot suggests the same Trump stories for every article. Either that or it suggests stories about Biden winning the election and being sworn in as president. I just don't get it. None of these stories has anything to do with the article. It could be a story about a new version of Firefox and Slashdot will suggest these stories. It's weird and creepy.
    • by OzPeter ( 195038 )

      You must be new here. You seem to be under the impression that the "management" and "editors" of /. actually care about anything to do with the site.

    • They are all about a douche bag criminal, that's how they are related.

      • They are all about a douche bag criminal, that's how they are related.

        Yeah, you're right. I have seen a lot of 'related' stories about Biden winning.

        (Go ahead, mods. Downvote this factual comment and confirm what everyone already knows about your bias.)

  • Can someone who understands this explain in layman's terms how the heck it is supposed to work?
    • by iNaya ( 1049686 )

      You borrow 10 shares worth $100 each. You then sell them immediately and now have $1000.

      Tomorrow, the share prices drops to $50 each. You buy 10 shares for $500, and give them back to whomever you borrowed them from.

      You now have $500

      • by mark-t ( 151149 )

        Why would someone just let you "borrow" stocks without charging you the value of those shares?

        The only way I can see you getting richer by borrowing high value stocks from someone is if they become worth even more while you are borrowing them and the person you borrowed them from pays you a commission on that increase when you return them.

        Alternatively, if you already had stock in the company,. I suppose you could sell your stock before it goes down and clear some profit that nobody else would be able

        • Why would someone just let you "borrow" stocks without charging you the value of those shares?

          Like borrowing money, there is an interest fee. Why do people let you borrow money? Same reason.

          The only way I can see you getting richer by borrowing high value stocks from someone is if...

          Did you not read the example given? In that example you just made $500 by a stock falling 50% in price.
          You don't borrow and hold, you borrow and sell immediately with the intention of buying back later at a lower price in order to give the borrowed amount of stock back. If it goes lower you profit, if it goes higher you lose.

          Other people not making money does not translate to you making more money than you otherwise would.

          The GP spelled it out quite clearly, and it's quite a common practice.

          • by mark-t ( 151149 )

            Like borrowing money, there is an interest fee. Why do people let you borrow money? Same reason.

            Yes, but you have to pay *BACK* what you borrowed.

            So if you pay back with shares that are worth less than they were when you first borrowed them, why does it not fall upon you to pay back the difference?

            • Yes, but you have to pay *BACK* what you borrowed.

              Correct. So if you borrowed $100k USD then sold it immediately for $150k Canadian Dollar, and then the value of the USD shrinks over the course of the loan, you then sell your $150k CAD back for $110k USD and pay back the initial loan of $100k and keep the extra $10k profit.
              If the value of the USD goes up, you have to buy back at a worse price than you started with and you lose out.

              So if you pay back with shares that are worth less than they were when you first borrowed them, why does it not fall upon you to pay back the difference?

              You are paying back the number of shares, not the value of shares.

              If you borrow a banana, then give a banana back at an agr

              • by mark-t ( 151149 )

                You are paying back the number of shares, not the value of shares.

                A person who would lend someone shares on such a basis is, IMO, an idiot. The logical extreme of this position suggests if you lend me 5 pieces of paper that are $20 notes, I should be able repay the debt by giving you 5 pieces of paper that are $1 notes. You lent me paper, and I gave you back the same amount of paper. What's the problem?

                This is, of course, absurd.

                Like those pieces of paper that are produced by the mint, the only reas

                • A person who would lend someone shares on such a basis is, IMO, an idiot.

                  Well you are entitled to your opinion, it doesn't change how the world works however.

                  The logical extreme of this position suggests if you lend me 5 pieces of paper that are $20 notes, I should be able repay the debt by giving you 5 pieces of paper that are $1 notes. You lent me paper, and I gave you back the same amount of paper. What's the problem?

                  You're failing to abstract the object from the value of the object. a $20 notes is always worth $20, but 1 share changes in value by the second. These variations offer an opportunity for profit or loss.

                  This is, of course, absurd.

                  Yes because your analogy fails to separate the object from its value.

                  Like those pieces of paper that are produced by the mint, the only reason that anyone trades shares in the first place is because they have monetary *VALUE*, and so it would seem that any lending of such shares must reflect that value, just as lending pieces of paper issued by the mint should be repaid by their value.

                  The part you are missing is that that value changes over time. And with all investing/gambling, some people think it will go up, and others think it will go

    • You borrow the shares with a contract to return them in x number of days. You then sell the shares you have borrowed and hold the money. If the stock goes down by X number of days, you buy the shares back, and pocket the difference. Ex:

      You borrow 100 shares of WIDGET stock for 30 days and sell it for $100 per share getting $10,000.
      20 days later, WIDGET stock tanks and goes down to $10.00 per share. You buy the 100 shares you need to return spending $1,000
      You pocket the $9,000 dollars you didn't use to return the shares.

      Of course, this is dangerous because there is a limit to the amount one can make but there is no limit to the amount one can lose if the stock goes up. Imagine borrowing and selling 1,000 shares of a stock at $10.00 and it goes up to $10,000 a share when they announce they ha

    • by gweihir ( 88907 )

      Can someone who understands this explain in layman's terms how the heck it is supposed to work?

      With market oversight that works, it will not.

  • and enough money will be the end of you.

    It is a simple equation really.

    Hit enough value, and victims may rather invest in having DarkSide hacked back and shut down.
  • Unless these randomware guys are demanding tens or hundreds of millions in ransom, it will have a negligible impact on a company's bottom line.

Solutions are obvious if one only has the optical power to observe them over the horizon. -- K.A. Arsdall

Working...