Hackers are impersonating security researchers to gain access to sensitive information and manipulate their victims. These hackers are pretending to be security researchers and are offering to help ransomware victims. They are extorting victims again by promising to delete stolen data. The hackers are posing as legitimate researchers and offering to hack the original ransomware group's servers. Two cases have been identified where the hackers pretend to be the Ethical Side Group and xanonymoux. Future attacks are possible due to unresolved security concerns. The hackers demand a low ransom and use file.io to prove access to victim data. It is believed that a single threat actor is targeting organizations affected by Royal and Akira ransomware attacks.
https://cybersecuritynews.com/hackers-impersonating-as-security-researcher/