The US has taken servers, domain names, and around $ 1 million in crypto assets from the Ransomware Group Blacksuit.
The Department of Justice Says On Monday, many US and international law enforcement agencies conducted operations against Blacksuit ransomware groups in late July.
The operation includes the university of a warrant for the cryptocurrency seizure of more than $ 1 million, at the time of the seizure, this reported.
“Disturbance with ransomware infrastructure is not just about getting servers, it’s about dismantling the whole ecosy system that provides cybercriminals to operate with disabilities,” added Michael Prado, deputy assistant director at the Homeland Security Investigations Cyber Crimes Center.
Blacksuit is a spinoff of Royal Ransomware Gang and operated from 2023, with the latest convulsion Coming amidst other actions taken by the US against ransomware groups, such as punishing ransomware hosting Provider Aeza Group in July.
The Department of Justice said the takedown was led by the US Department of Homeland Security’s Homeland Security investigation with assistance from secret services, the IRS and the FBI, along with law enforcement from UK, Germany, Ireland, France, Canada, Ukraine, and Lithuania.
Coordinated ransomware attacks
The Department of Justice said the Ransomware The group continues to target critical infrastructure throughout the sector, including health care, government facilities, manufacturing, and commercial facilities. Victims are usually forced to pay ransoms to Bitcoin (Btc) through Darknet websites.
Since 2022, Panday has compromised more than 450 well -known victims in the US and has received more than $ 370 million in ransom payments, it added.
Ransomware schemes use double expansion tactics such as encryption of victims’ systems while threatening to leak the stolen data to further force payment, the DOJ said.
“The ongoing target of the Blacksuit Ransomware Gang of the US’s critical infrastructure represents a serious public safety threat in the US,” said Assistant Attorney General for national security John Eisenberg.
Taken by bitcoin ransom
In 2023, a victim paid a ransom of 49.3 BTC, worth about $ 1.4 million in time, to dedicate their data.
A portion of the ransom payment, the seized $ 1 million, repeatedly deposited and retreated from a crypto exchange account until the funds froze by exchange in early 2024, it reported, even though it did not name the exchange.
Related: US penalties are the crypto wallet tied to ransomware, Infostealer host
Ransom requests are usually from approximately $ 1 million to $ 10 million to BTC, and the largest ransom that Panday actors demand is $ 60 million, According to to cybersecurity and infrastructure security agency.
Crypto ransomware alternative
In July, Dallas, Texas, FBI announced the seizure of 20 BTC worth nearly $ 2.4 million from a cryptocurrency address belonging to a well -known member of the Chaos Ransomware Group.
Last week, analysts at TRM Labs investigating how a new group of ransomware called embargo may appear as an alternative operation in Blackcatwhich the laundry resumes through crypto accounts. Approximately $ 18.8 million worth remains in vain in the uninhabited purse, it declares.
Magazine: Scottie Pippen said Michael Saylor warned him about Satoshi Chatter
