The popular hacking forum XSS forum, previously known as DaMaGeLab, announced that that it would ban the ads published by ransomware gangs. The forum is one the most important places of aggregation where ransomware gangs offer their services and attempt to recruit new affiliates in their networks.
The decision to ban ads published by ransomware gangs was an attempt to avoid attracting attention from law enforcement, the forum also prohibits any affiliated program. The recent ransomware attack against the Colonial Pipeline conducted by the Darkside gang triggered the response of the US authorities that resulted in the seizure of their servers.
At the time of this writing, ads from ransomware gangs are still allowed on some hacking forums, but another popular cybercrime forum, Exploit, banned this activity.
Admins of Exploit will also remove affiliate programs from the hacking forum:
“We are glad to see pentesters, malware specialists, coders, but we are not happy with lockers – they attract a lot of attention. This type of activity is not good to us in view of the fact that networks are locked indiscriminately we do not consider it appropriate for RaaS partner programs to be present on our forum. It was decided to remove all affiliate programs and prohibit them as a type of activity on our forum.” reads the statement published by the admins.
(SecurityAffairs – hacking, ransomware)