Through a lightning-fast operation theFBI managed to access the infrastructure servers of BlackCatwell-known group ransomwareblocking the group’s sites.
On December 7, websites run by hackers suddenly stopped working. Although the cybercriminals immediately stated that everything could be traced back to hosting problemsin reality the fact was linked to the operation of the police.
The confirmation came directly from Department of Justicewhich explained how the FBI monitored the infrastructure used for ransomware attacks over the last few months, managing to steal the related decryption keys. The operation also made it possible to seize the domain used by BlackCat to manage the data exfiltration.
The action of the officers made it possible to help around 500 victims which, through al decryptor prepared by law enforcement experts, they were able to recover the stolen files. Overall, the foiled operations could have paid off 68 million dollars ai cybercriminali.
BlackCat and FBI: the clash is just beginning
The intervention, which adds to the recent operation of theInterpol which led to the arrest of 3,500 people, is also the result of the collaboration of investigative agencies from other countries, such as (Germany, United Kingdom, Netherlands, Australia, Austria and Spain) as well as with Europol.
Although affiliates seem to have distanced themselves from the infrastructure, fearing being involved in further investigations, BlackCat has certainly not ceased its activities and, indeed, has prepared a ferocious counter-move. The ransomware group, in fact, claimed how the FBI only gained access to decryption keys from the last month and a half, with another 3,000 victims which remained at the mercy of hackers.
Furthermore, in retaliation against the American agency, cybercriminals have removed any form of restriction regarding the objectives accessible to its affiliates. In fact, they are now allowed to target any type of organization, person and company with the exception of individuals residing in the countries of the former Soviet Union.