The Conti ransomware group warns they will not hesitate to attack those who dare to carry out cyber attacks on Russia, in response to the Russian invasion of Ukraine.

According to the Russian hacker group in its blog, it will exert its "full capacity to provide countermeasures" if the United States and its Western allies resort to cyber warfare.

Citing CNET on Sunday (27/2/2022), Reuters reported that this threat applies if there is an "attempt to target critical infrastructure in Russia or any Russian-speaking region of the world."

Quoted from ZDNet, Conti also officially announced full support for the Russian government.

"If any agency decides to orchestrate any cyberattack or war activity against Russia, we will use all possible resources to counterattack the critical infrastructure of the enemy country," the ransomware gang wrote.

The statement came after the Ukrainian government on Thursday asked for volunteers from the hacking community to help protect their critical infrastructure, as well as spy on Russian troops.

This happened after several sites and Ukrainian state banks went out due to being hit by a Russian attack on Wednesday (23/2/2022).

The US Cybersecurity and Infrastructure Security Agency (CISA) in September 2021 sent a warning regarding the Conti ransomware.

CISA and the FBI said they had seen more than 400 attacks against US organizations and international companies that used the Conti ransomware.

The Conti group is also suspected of having attacked Bank Indonesia (BI) some time ago, as revealed by a dark web intelligence platform called Dark Tracer in January 2022.

The impact of the ransomware attack at that time was allegedly more severe than what was revealed some time ago. In a post on the Dark Tracer Twitter account, Saturday (22/1/2022), the Conti ransomware gang is still uploading the internal BI data they stole.

"The previously leaked Bank Indonesia data was 487MB, but the size has now reached 44GB," wrote @darktracer_int.