The ransomware gang, known in Russian and English, is known as “REvil”, according to Russia’s Federal Security Service (ФСБ) FSB. take down:
The FSB has created the complete composition of the criminal community “REvil”
The Russian FSB has identified an entire criminal group called “REvil”
We would love to tell you what we were told what happened and we admit to relying on automatic translation of the report, but as far as we know, the FSB claims the investigation resulted in:
- Police raid 25 addresses At least in Moscow, St. Petersburg, Moscow, Leningrad and Lipetsk.
- Arrested multiple times. As many as 14 people were implicated, but the report did not say how many were actually detained.
- Over $5,000,000 forfeited In the form of rubles and cryptocurrencies.
- US$600,000 and €500,000 seized use cash.
- 20 beautiful motors towed away The reason is that they were “purchased with the proceeds of crime”.
US connection
The FSB report explicitly mentions that the investigation and raids were initiated at the request of U.S. law enforcement, which has apparently identified the REvil leader and provided evidence of the gang’s involvement in criminal extortion of U.S. victims.
The FSB also gave a bullish conclusion, claiming that due to the raid “This cyber gang no longer exists and its criminal infrastructure has been neutralized”.
We hope it’s true that the core of REvil’s ransomware-as-a-service operation is really dead now…
…but the real problem with contemporary cybercrime is [a] There are still many ransomware gangs operating, although there are fewer cases of impunity than before, and [b] There are many other types of cybercrime.
Spammers, scammers, spyware pushers, phishers, password stealers, money launderers, fake support callers, and any number of other perpetrators of cybercrime still exist, many of whom may not have been exposed to this raid at all Influence.
what to do?
So, despite this good news:
- Remember, prevention is better than cure.
- Don’t let your guard down.
- Patch early, patch more.
- Encourage your users to report suspicious online activity.
And, while you’re talking about it, why not read the recommendations in our latest State of Ransomware report?
