Ransomware gang sites disappear from Internet

By Laura Berrill
Websites of Russian-linked ransomware gang which attacked hundreds of businesses now offline

A payment website and blog run by the REvil group has suddenly become unavailable. The reason for the disappearance is unknown, but has sparked speculation the group may have been targeted by authorities. The disappearance comes amid growing pressure between the US and Russia over cyber-crime.

Joe Biden said he raised the issue with Vlamidir Putin during a phone call on Friday, He told reporters he had made it very clear that we expect them to act" on information and hinted the US would retaliate directly to servers used for cyberattacks.

A prolific cyberattack operation

Despite speculation that either the US or Russian officials may have taken action against REvil, officials have so far declined to comment and cyber experts say sudden disappearances of groups are not necessarily uncommon.

The development comes after a series of high-profile ransomware attacks which have hit major US businesses this year.

The FBI accused REvil - also known as Sodinokibi - of being behind a ransomware attack on the world's largest meat processing company JBS last month.

The group also demanded a huge bitcoin ransom for an attack on IT firm Kaseya last week, as well as hundreds of other businesses around the globe.

A brief cybersecurity victory?

REvil has been one of the most prolific ransomware gangs and it is significant if it has indeed disappeared. Rumours abound with regards to the reasons behind this, but one hacker has claimed the US ‘feds took down’ elements of the gang’s website, so it decided to pull the plug on their operations. He added there was pressure from the Kremlin as well.

If this information proves to be accurate, it reveals a dramatic shift in policy from Russia which has been enabling gangs like REvil to operate without fear of intervention. However the hacker also hinted at another reality, saying he has no plans to retire, saying: ‘Make one go away, more will rise’.



Featured Articles

TECH LIVE LONDON: Day 2 highlights of the hybrid tech show

We take a look at some of the highlights of our final day at the Tech Live London show, including insights from Claroty, SalesForce and Oracle

TECH LIVE LONDON: An overview of the hybrid technology show

We take a look at the first day of Tech Live London with insights from technology leaders from companies such as IBM, Microsoft and Vodafone

TECH LIVE LONDON: Begins tomorrow at 10am!

Our marquee technology event is nearly here. There's still time to claim your free ticket (worth £295). Look forward to welcoming you to the Tobacco Dock!

Executive Q&A: Marc Lueck, CISO EMEA, Zscaler

Cloud & Cybersecurity

TECH LIVE LONDON: Registering, networking and logistics

Digital Transformation

New speaker from Infosys announced for TECH LIVE LONDON!

Digital Transformation