Ransomware's Crazy Uncle

Azim Khodjibaev

This presentation is about a well-known threat actor named Dydka or uncle (transliterated Russian into English), who is infamous for his role in developing Babuk and Monti ransomware and orchestrating some of the most impactful ransomware attacks to date. I'll go into Dydka's cybercriminal activities, which include the creation of Babuk and Monti, as well as his participation in major groups like Conti, BlackMatter, and Lockbit.  I'll also touch on the workings of his personal ransomware ecosystem and his weird relationship with Wazawaka and their party lifestyle. Finally, I'll look at Dydka's direct involvement in high-profile cyberattacks, such as those on the DC Metro Police and Costa Rica.