• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
Cyber Security News

Global Action “Dismantles” Hive Ransomware Group

You are here: Home / General Cyber Security News / Global Action “Dismantles” Hive Ransomware Group
January 27, 2023

World legislation enforcers celebrated this week following revealing a coordinated operation to disrupt the Hive ransomware variant.

The ransomware-as-a-service (RaaS) outfit has specific far more than 1500 victims in in excess of 80 nations given that June 2021, building an approximated $100m in the system, in accordance to the Office of Justice (DoJ). Victims provided hospitals, colleges, monetary corporations and critical infrastructure gamers.

However, from late July 2022, the FBI was ready to achieve entry to the group’s laptop networks, enabling it to seize decryption keys and distribute them to Hive victims globally, the DoJ said.

✔ Approved Seller From Our Partners
Mullvad VPN Discount

Protect your privacy by Mullvad VPN. Mullvad VPN is one of the famous brands in the security and privacy world. With Mullvad VPN you will not even be asked for your email address. No log policy, no data from you will be saved. Get your license key now from the official distributor of Mullvad with discount: SerialCart® (Limited Offer).

➤ Get Mullvad VPN with 12% Discount


These 1300+ keys evidently saved victims an approximated $130m in ransom needs.

Along with this operation, European police teamed up with the FBI to acquire down critical infrastructure used by the group.

13 international locations in overall participated in the operation, like the UK, Canada, France, Norway, Portugal, Romania, Spain and Sweden. Having said that, it was German and Dutch law enforcement that seized the servers and web-sites utilized by Hive to connect with its members and affiliate marketers.

“The Section of Justice’s disruption of the Hive ransomware group ought to speak as obviously to victims of cybercrime as it does to perpetrators,” claimed US deputy attorney normal Lisa Monaco.

“In a 21st century cyber-stakeout, our investigative group turned the tables on Hive, swiping their decryption keys, passing them to victims, and ultimately averting much more than $130m in ransomware payments.”

Hüseyin Can Yuceel, security researcher at Picus Security, explained Hive as a single of the most prolific ransomware teams of the previous 5 decades.

“The FBI’s push launch did not give any unique names. There is no connected indictment,” he extra.

“Sophisticated ransomware risk actors are not straightforward to establish, and even if they are determined, they may perhaps not be in the agency’s arrive at. Which is why the FBI took the upcoming greatest tactic and disrupted the group’s operations.”

On that note, the Point out Division reiterated its guarantee to shell out “up to $10m” for any info on the locale or identity of cyber-criminals performing for hostile states.

“If you have facts that backlinks Hive or any other destructive cyber actors targeting US critical infrastructure to a foreign government, mail us your tip by using our Tor suggestion line. You could be qualified for a reward,” it stated by using Twitter.

Mark Lamb, CEO of HighGround, warned that Hive’s users would likely reappear.

“The infrastructure is just a person component of the gang’s success, and until regulation enforcement capture the criminals, there is a substantial prospect they will resurface less than a new identification with brand name new infrastructure completely ready to terrorise all over again. Do DarkSide or BlackMatter ring any bells?” he argued.

“While the takedown and seizing of the decryption keys is brilliant and a big gain for regulation enforcement, the menace of ransomware however looms.”


Some areas of this report are sourced from:
www.infosecurity-magazine.com

Previous Post: «fbi's landmark takedown of hive ransomware 'unlikely' to land significant FBI’s landmark takedown of Hive ransomware ‘unlikely’ to land significant impact
Next Post: British Cyber Agency Warns of Russian and Iranian Hackers Targeting Key Industries british cyber agency warns of russian and iranian hackers targeting»

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Report This Article

Recent Posts

  • CISA Unveils Ransomware Notification Initiative
  • WooCommerce Patches Critical Plugin Flaw Affecting Half a Million Sites
  • GitHub Updates Security Protocol For Operations Over SSH
  • Malicious Python Package Uses Unicode Trickery to Evade Detection and Steal Data
  • Some GitHub users must take action after RSA SSH host key exposed
  • THN Webinar: Inside the High Risk of 3rd-Party SaaS Apps
  • Pension Protection Fund confirms employee data exposed in GoAnywhere breach
  • GitHub Swiftly Replaces Exposed RSA SSH Key to Protect Git Operations
  • Now UK Parliament Bans TikTok from its Network and Devices
  • IRS Phishing Emails Used to Distribute Emotet

Copyright © TheCyberSecurity.News, All Rights Reserved.