Ransomware Group
Conti
Also known as: Conti Ransomware, Wizard Spider
Status: inactive • First seen 2020-05 • 1,000+ known victims
Conti was a massive criminal enterprise that fell apart after internal drama. Members scattered to other groups.
Overview
Conti was one of the most profitable ransomware operations before internal leaks led to its dissolution.
Target Industries
Healthcare, Government, Manufacturing
How They Attack
- • Phishing
- • TrickBot malware
- • Cobalt Strike
Notable Victims
Costa Rica Government (2022), Ireland HSE (2021)
Is your business exposed?
How to Protect Against Conti
- 1.
Watch for successor groups
MITRE ATT&CK Techniques
Is your business exposed?
Check if your company data is circulating on the dark web
Free scan • No credit card required