Researcher Tricks 100 Hackers With Fake Ransomware Tool

Cybersecurity researcher Cristian Cornea exposed 100 dark web hackers using a fake ransomware tool, Jinn, designed as a honeypot to monitor and disrupt cybercriminal activities in a controlled, legal environment.

A cybersecurity researcher recently turned to unconventional methods to expose cybercriminals operating on the dark web, as first reported by Forbes on Sunday. Cristian Cornea, a penetration tester and ethical hacker, used a fake ransomware tool to target users of BreachForums, a marketplace known for illicit activities.

Cornea developed the “Jinn Ransomware Builder,” a tool marketed as a comprehensive kit for launching ransomware attacks. It promised advanced features such as command-and-control capabilities, encryption, and multi-language support, said Forbes.

The tool quickly gained popularity on the forum, drawing interest from those seeking to exploit it for illegal purposes. However, Jinn was not what it seemed. Cornea designed the software as a decoy, embedding backdoors that allowed him to monitor its use, noted Forbes.

The supposed features, such as encryption and language support, were largely non-functional, intended only to create a convincing façade. In reality, the tool enabled Cornea to track and collect information on those attempting to use it, as reported by Forbes.

Forbes says that in a post detailing the operation, Cornea explained that all activities were conducted in a controlled environment and did not involve any illegal hacking.

He emphasized that his project was designed to expose malicious actors without causing harm. Cornea also discouraged others from attempting similar actions, citing the legal and ethical challenges of such operations.

The case highlights an ongoing debate within the cybersecurity community about the ethics and risks of “hacking back” against attackers. While proponents argue it can serve as a deterrent, critics warn of the potential for legal consequences and unintended harm, says Forbes.

Cornea’s careful approach demonstrates how such techniques can be used responsibly, provided they remain within ethical and legal boundaries. Forbes reported that by using this method, Cornea disrupted the activities of 100 individuals on the platform, shedding light on the strategies used by cybercriminals.

His work underscores the importance of creative solutions in the fight against online threats, while also raising questions about the limits of ethical hacking.

Forbes said that Cornea concluded his account with a reminder of the thin line separating lawful cybersecurity research from unlawful hacking, urging caution for anyone exploring similar strategies.

His approach serves as a case study in balancing innovation with accountability in the effort to address growing cyber risks.