You're listening to the CyberWire Network, powered by N2K.

And now a word from our sponsor, Netscope.

Netscope is a worldwide leader in Sassy and Zero Trust.

Its unified platform Netscope 1 provides optimized access and zero trust security for people, devices, and data anywhere

they go.

Helping customers reduce risk, accelerate performance, and get unrivaled visibility into

any cloud, web, and private application activity.

To learn more about how NetScope helps customers be ready for anything on their sassy journey,

visit any T-S-K's K OPE.com. Hello everyone and welcome to the CyberWire's research Saturday.

I'm Dave Bitner and this is our weekly conversation with researchers and analysts

tracking down the threats and vulnerabilities, solving some of the hard problems and

protecting ourselves in a rapidly evolving cyberspace.

Thanks for joining us.

So about two years ago,

I, before Lockby was really known who they are today, I started researching them after I got done with Reevil.

And, you know, I somehow just got on the inside.

That's John DiMaggio, chief security strategist at analyst 1.

Today we're discussing his research, Ransomware Diaries, 5, unmasking lockbit. After I published the Ransommer Diaries Volume 1, they knew who I was, began using my face with their

avatar on the dark web, so I started talking to them from there as myself, developed a relationship which led to a lot of the findings in my

volumes of the Ransomware diaries after the first one.

And you know, at times we were, you know, friendly, I mean you can't talk to somebody that much and not grow a relationship

but I've always been out to get him I've always been honest about what my you know what my intent was so fast forward sort of to where we are now, you know, I wasn't

...