Anonymous collective NB65 hacks Over 480 GB emails from CorpMSP, a Russian government organization

According to the latest breach updated on DDoSecrets, Anonymous Collective @NB65 has hacked CorpMSP, a federal institution providing support to small and medium-sized businesses. The controlling shareholder of CorpMSP is the Russian Federation. CorpMSP hacked data has around 480 GB of data including 75,000 files, emails, and disc pictures.

CorpMSP is also allegedly used as a front for digital espionage, according to NB65, and has contracts with the Ministry of Defense. Mega, who purportedly hosted NB65’s only copy, promptly erased the files that documented these charges. Client contracts and image files of Ministry of Defense contracts were among the 9GB of files, according to NB65.

NB65 recently hacked and leaked a massive trove of files from Qiwi and clients’ credit card information.

Who is NB65?

According to the Twitter profile, NB65 is a part of a global hacktivist collective. In the bio, it states Network Battalion 65′. Cybersecurity experts Tom Malka initially discovered NB65’s ransomware, and over the weekend, they were able to find a sample of the Conti malware updated by NB65 and posted to VirusTotal. The good news is that practically every antivirus solution on VirusTotal can currently detect ransomware (detection rate 49/68).

Unlike the original Conti ransomware, the NB65 version appends the.NB65 extension to the encrypted file names, according to the experts.

The ransom message was also altered by the hacktivists, who accused Russia and Putin of invading Ukraine and committing war crimes.

“We’re watching very closely.  Your President should not have committed war crimes. If you’re searching for someone to blame for your current situation look no further than Vladimir Putin,” reads the NB65 ransomware note shared by BleepingComputer.