Mogilevich

Mogilevich, a self-proclaimed "group dedicated to data extortion," emerged on February 20th and made claims of high-profile cyber attacks. Their alleged victims included Infiniti, Epic Games, DJI, and Shein. The group gained notoriety for their audacious claims of successful ransomware attacks, including an alleged breach of Epic Games' servers. However, these claims were later debunked by the respective companies, with Epic Games specifically stating they found zero evidence of a cyberattack or data theft, despite Mogilevich's assertions. The true nature of Mogilevich was revealed on March 2nd when a persona identifying as "Pongo" admitted that the group was not a Ransomware as a Service but professional fraudsters. Pongo confessed to extracting significant sums from individuals under false pretenses, including $16,000 for panel access to non-existent ransomware, $7,000 for allegedly stolen cryptocurrency accounts, and $85,000 from an individual who believed they were purchasing sensitive exfiltrated data. Based on this information, it is assessed with moderate confidence that Mogilevich and RansomedVC are likely enterprises of the same individual threat actor. This actor will probably continue attempting scam and faux-extortion operations in the future. Despite their fraudulent activities, the impact of their actions remains significant, particularly in terms of the fear and uncertainty generated among their supposed victims and the broader cybersecurity community.