Using locally hosted LLMs (e.g., a fine‑tuned RuGPT‑4 clone), hackers generate personalized emails in near‑perfect English with no translation errors—tricking even security‑aware staff.
May 2, 2026 | Reading Time: 12 minutes
: Groups like Conti or LockBit (historically linked to Eastern European and Russian operators) utilize "leak sites" to pressure victims into paying ransoms. If the ransom isn't paid, the data—marked with specific internal identifiers—is published for public download. Mitigation and Defense