FBI, others crush REvil using ransomware gang’s favorite tactic against it

by
Tim De Chant
from Ars Technica - All content on (#5R1BZ)
REvil-codewall-800x450.jpg

Enlarge (credit: Aurich Lawson)

Four days ago, the REvil ransomware gang's leak site, known as the Happy Blog," went offline. Cybersecurity experts wondered aloud what might have caused the infamous group to go dark once more.

One theory was that it was an inside job pulled by the group's disaffected former leader. Another was that law enforcement had successfully hacked and dismantled the group. Normally, I am pretty dismissive of law enforcement' conspiracy theories, but given that law enforcement was able to pull the keys from the Kaseya attack, it is a real possibility," Allan Liska, a ransomware expert, told ZDNet at the time.

Rebranding happens a lot in ransomware after a shutdown," he said. But no one brings old infrastructure that was literally being targeted by every law enforcement operation not named Russia in the world back online. That is just dumb."

Read 9 remaining paragraphs | Comments

index?i=FoAH93ucJrM:LLLJQzBM0Wg:V_sGLiPB index?i=FoAH93ucJrM:LLLJQzBM0Wg:F7zBnMyn index?d=qj6IDK7rITs index?d=yIl2AUoC8zA
External Content
Source RSS or Atom Feed
Feed Location http://feeds.arstechnica.com/arstechnica/index
Feed Title Ars Technica - All content
Feed Link https://arstechnica.com/
Reply 0 comments