This article has been indexed from Threatpost
A newly discovered backdoor and double chats could have enabled REvil ransomware-as-a-service operators to hijack victim cases and snatch affiliates’ cuts of ransom payments.
Read the original article: How REvil May Have Ripped Off Its Own Affiliates