{"id":2141,"date":"2021-07-12T19:58:38","date_gmt":"2021-07-12T19:58:38","guid":{"rendered":"https:\/\/osintme.com\/?p=2141"},"modified":"2021-07-12T20:02:20","modified_gmt":"2021-07-12T20:02:20","slug":"ransomwhe-re-a-newly-launched-crowdsourced-ransom-payments-tracker","status":"publish","type":"post","link":"https:\/\/osintme.com\/index.php\/2021\/07\/12\/ransomwhe-re-a-newly-launched-crowdsourced-ransom-payments-tracker\/","title":{"rendered":"Ransomwhe.re &#8211; a newly launched, crowdsourced ransom payments tracker"},"content":{"rendered":"\t\t<div data-elementor-type=\"wp-post\" data-elementor-id=\"2141\" class=\"elementor elementor-2141\">\n\t\t\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-e21c93d elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"e21c93d\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-bedcdc1\" data-id=\"bedcdc1\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-f4883f4 elementor-widget elementor-widget-image\" data-id=\"f4883f4\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<img decoding=\"async\" width=\"311\" height=\"79\" src=\"https:\/\/i0.wp.com\/osintme.com\/wp-content\/uploads\/2021\/07\/Screenshot-2021-07-12-at-20.33.30.png?fit=311%2C79&amp;ssl=1\" class=\"attachment-large size-large wp-image-2146\" alt=\"ransomwhe.re OSINT\" srcset=\"https:\/\/i0.wp.com\/osintme.com\/wp-content\/uploads\/2021\/07\/Screenshot-2021-07-12-at-20.33.30.png?w=311&amp;ssl=1 311w, https:\/\/i0.wp.com\/osintme.com\/wp-content\/uploads\/2021\/07\/Screenshot-2021-07-12-at-20.33.30.png?resize=300%2C76&amp;ssl=1 300w\" sizes=\"(max-width: 311px) 100vw, 311px\" \/>\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-b18954f elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"b18954f\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-8f6d020\" data-id=\"8f6d020\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-5764dce elementor-widget elementor-widget-text-editor\" data-id=\"5764dce\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>Ransomware attacks continue to dominate the 2021 threat landscape, edging closer and closer to being deemed a state security problem in the Western world.<\/p><p>Acts of extortion arising from the rogue usage of data encryption algorithms may soon be treated on par with terrorism, as currently there seem to be no other type of a cyber attack that can affect the lives of so many people and the functioning of so many institutions.<\/p><p>Two months ago I wrote a quick set of tips on <a href=\"https:\/\/osintme.com\/index.php\/2021\/05\/13\/practical-ransomware-protection-tips\/\">how to protect yourself from ransomware<\/a> &#8211; but unfortunately prevention is never enough.<\/p><p>And that&#8217;s where <a href=\"https:\/\/ransomwhe.re\/\">Ransomwhe.re<\/a> steps in: the first crowdsourced and free to use platform for collecting and collating information related to the payments of online ransoms.<\/p><p>The idea of the platform is simple &#8211; ransomware victims (or researchers) can upload information regarding the ransom demands they were hit with, including the following:<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-62d1440 elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"62d1440\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-963b12a\" data-id=\"963b12a\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-fccd0b2 elementor-widget elementor-widget-text-editor\" data-id=\"fccd0b2\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<ul><li>The BTC addresses that the attackers gave their victims for payment<\/li><li>The ransomware family (only if known)<\/li><li>The amount of BTC the extertionists are demanding<\/li><li>Screenshot of the payment page<\/li><li>The ransom note<\/li><li>Links to public sources like reports or published research<\/li><\/ul>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-09fc2f3 elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"09fc2f3\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-b1c4638\" data-id=\"b1c4638\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-04e235b elementor-widget elementor-widget-text-editor\" data-id=\"04e235b\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>The last three from the above list are meant to prevent abuse and generating fake reports.<\/p><p>The public availability of all the data will allow it to be cross-examined and verified. The creator of the site states that untruthful reports are going to be removed.<\/p><p>Any user can contribute to Ransomwhe.re by reporting BTC addresses connected to ransomware attacks. Anybody can also download the website&#8217;s data in .json format.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-885fb5c elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"885fb5c\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-f6f27ab\" data-id=\"f6f27ab\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-4dfbaff elementor-widget elementor-widget-text-editor\" data-id=\"4dfbaff\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>The creator of Ransomwhe.re is <a href=\"https:\/\/twitter.com\/jackhcable\">Jack Cable<\/a> and here is how he explains the reason behind his project:<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-b2c06fb elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"b2c06fb\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-51625eb\" data-id=\"51625eb\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-69939d9 elementor-widget elementor-widget-text-editor\" data-id=\"69939d9\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p><em><span class=\"css-901oao css-16my406 r-poiln3 r-bcqeeo r-qvutc0\">&#8220;Today, there&#8217;s no comprehensive public data on the total number of ransomware payments. Without such data, we can&#8217;t know the full impact of ransomware, and whether taking certain actions changes the picture. Ransomwhere aims to fill that gap by tracking bitcoin transactions associated with ransomware groups. It&#8217;s public, so anyone can view and download the data. And it&#8217;s crowdsourced, so anyone can submit reports of ransomware they&#8217;ve been infected with or otherwise observed.&#8221;<br \/><\/span><\/em><\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-0fe102d elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"0fe102d\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-9c40776\" data-id=\"9c40776\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-d9cc175 elementor-widget elementor-widget-text-editor\" data-id=\"d9cc175\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>Thanks to the public availability of the Bitcoin blockchain and its nature as a distributed ledger, tracking ransomware funds should be made that bit easier &#8211; especially when combined with another public (albeit centralised) repository that hopefully will gather momentum.<\/p><p>PS. For BTC related OSINT, check out my previous post <a href=\"https:\/\/osintme.com\/index.php\/2020\/01\/23\/osint-me-tricky-thursday-3\/\">here<\/a>.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"<p>Ransomwhe.re is the first crowdsourced and free to use platform for collecting and collating information related to the payments of online ransoms.<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"neve_meta_sidebar":"","neve_meta_container":"","neve_meta_enable_content_width":"","neve_meta_content_width":0,"neve_meta_title_alignment":"","neve_meta_author_avatar":"","neve_post_elements_order":"","neve_meta_disable_header":"","neve_meta_disable_footer":"","neve_meta_disable_title":"","_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[6],"tags":[62,64,63,65,76,44,61,134],"class_list":["post-2141","post","type-post","status-publish","format-standard","hentry","category-open-source-intelligence","tag-bitcoin","tag-blockchain","tag-btc","tag-cryptocurrency","tag-cybercrime","tag-intelligence","tag-malware","tag-ransomware"],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/osintme.com\/index.php\/wp-json\/wp\/v2\/posts\/2141","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/osintme.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/osintme.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/osintme.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/osintme.com\/index.php\/wp-json\/wp\/v2\/comments?post=2141"}],"version-history":[{"count":13,"href":"https:\/\/osintme.com\/index.php\/wp-json\/wp\/v2\/posts\/2141\/revisions"}],"predecessor-version":[{"id":2155,"href":"https:\/\/osintme.com\/index.php\/wp-json\/wp\/v2\/posts\/2141\/revisions\/2155"}],"wp:attachment":[{"href":"https:\/\/osintme.com\/index.php\/wp-json\/wp\/v2\/media?parent=2141"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/osintme.com\/index.php\/wp-json\/wp\/v2\/categories?post=2141"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/osintme.com\/index.php\/wp-json\/wp\/v2\/tags?post=2141"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}