Interview #8 Benzona

Interview with the Benzona ransomware group describing an active double‑extortion operation that encrypts files with a ".benzona" extension, leaves a "RECOVERY_INFO.txt" ransom note with a 72‑hour deadline, exfiltrates roughly ~1 TB of prioritized documents to a public leak site (8 victims declared, four in Romania), avoids targeting healthcare/life‑support, uses phishing/exploits/compromised credentials for access, and plans to roll out a vetted Ransomware‑as‑a‑Service program.