WASHINGTON: Websites run by the ransomware gang REvil suddenly became unreachable on Tuesday, sparking widespread speculation that the group had been knocked offline.
The Russia-linked cybercrime ring has collected tens of millions of dollars in ransom payments in return for restoring computer systems it has hacked. In recent weeks it claimed responsibility for a sprawling ransomware outbreak that affected an estimated 800 to 1,500 businesses worldwide.
Ransomware sites can be unreliable, and it was unclear whether the site's disappearance was a momentary fluke or whether the hackers had downed tools or been removed from the internet by someone else. Both the group's payment portal and its blog, which named and shamed their victims who refused to pay the ransoms they demanded, were unreachable.
The White House declined comment. An attempt to reach REvil, one of whose representatives briefly spoke with Reuters last week, was unsuccessful.
The disappearance is not necessarily significant.
Vanishing acts are common in the ransomware world, where gangs tend to disappear and rebrand when they begin attracting too much heat.
REvil was already drawing top-level U.S. government attention, and pressure has been mounting on Washington to take more decisive action against REvil and groups like it.
The United States has been hit by a string of high-profile hacks by ransom-seeking cybercriminals, including an intrusion into Colonial Pipeline which disrupted gasoline deliveries across the East Coast.
President Joe Biden hinted on Friday the United States could take more aggressive action soon where ransomware was concerned.
READ ALSO - Biden presses Putin to act on ransomware attacks, hints at retaliation
Asked by a Reuters correspondent on Friday whether it would make sense to attack the Russian servers used in such intrusions, Biden paused, smiled and said: "Yes."
For the head of one cybersecurity company, the possibility that someone - the U.S. government or otherwise - knocked the group offline raised some concerns.
"If this was an organized cyber offensive, I am hopeful that collateral damage was a consideration," said Kurtis Minder, the founder of threat intelligence firm GroupSense.
Ransomware-seeking criminals and their victims are in some ways co-dependent, with the bad actors holding the keys to their victims' encrypted data. Should those keys have been lost or destroyed in a cyberattack "many companies, individuals are going to have a tough time recovering," he said.
Wrecking a cybercriminal server or two was not sustainable in the long run, he added.
"REvil is one of dozens of major ransomware operators," he said. "Are we going to attack all of them?"
READ ALSO - Up to 1,500 businesses affected by ransomware attack, US firm's CEO says
Reuters
Wed Jul 14 2021
Vanishing acts are common in the ransomware world, where gangs tend to disappear and rebrand when they begin attracting too much heat. - REUTERS
‘C4Cinta’ sets record as highest-grossing Malaysian Tamil film
'C4Cinta', directed by young filmmaker Karthik Shamalan, has set a new benchmark in Malaysian Tamil cinema.
Man charged with mother's murder, storing body in freezer
The court denied bail and scheduled case mention on Feb 7 for the submission of forensic, autopsy, and chemist reports.
Abolition of examination in schools to reduce pressure on pupils - Fadhlina
The classroom assessment approach offers a much more interesting learning ecosystem, says Fadhlina Sidek.
Google, Meta urge Australia to delay bill on social media ban for children
Google and Meta says the government should wait for the results of an age-verification trial before going ahead.
Judge tosses Trump 2020 election case after prosecutors' request
It represents a big legal victory for Donald Trump, who won the Nov. 5 US election and is set to return to office on Jan. 20.
DHL plane crash in Lithuania leaves authorities searching for answers
Rescue services said the plane hit the ground, split into pieces and slid over 100 metres (110 yards).
National squad to hold friendly matches for 2025 Indoor Hockey World Cup
The warm-up matches will involve matches against better ranked teams in the world, namely Austria (first) and Belgium (third).
G7 seeks unity on ICC arrest warrant for Netanyahu
The United States, part of the G7, has rejected the ICC decision, with President Joe Biden describing it as outrageous.
Francissca Peter remembers Tan Sri Ahmad Nawab: A tribute to a musical legend
A legend who has influenced our music for decades, was one of the highlights of my career, says Francissca Peter.
TikTok decision coming soon as Jan. 19 divestment deadline looms
Judges are reviewing TikTok's challenge to a law requiring ByteDance to sell its US assets by Jan. 19 or face a ban.
Lebanese sources: Biden, Macron set to announce Israel-Hezbollah truce
In Washington, White House national security spokesperson John Kirby said, "We're close" but "nothing is done until everything is done".
PM meets chaebol tycoon to attract more FDI to Malaysia
Chaebols are prominent figures from South Korea's family-owned conglomerates.
Govt won't allow non-citizen vehicles to enjoy RON95 subsidy - Economy Ministry
The implementation of the RON95 subsidy in 2025 is expected to provide savings of RM3.6 billion to government expenditure.
Ringgit opens lower as greenback gains ground
Dr Mohd Afzanizam says the market responded positively to news of hedge fund manager Scott Bessent heading the US Treasury Department.
Management of low-cost housing, gov't quarters, focus at Dewan Rakyat today
Also among the highlights, UNICEF report on 12.3pct of teenagers in Klang Valley's PPR face mental health issues and suicidal tendencies.
UN Resolution 1701, cornerstone of any Israel-Hezbollah truce
Here are the resolution's main terms, and a note about subsequent violations and tensions.
Record aid worker deaths in 2024 in 'era of impunity', UN says
So far this year there have been 281 aid worker victims, according to the Aid Worker Security database.
Why India's toxic farm fire counting method is disputed
Here's how India counts farm fires - a major contributor to severe pollution in the north - and why its method is being questioned.
Divisions on curbing plastic waste persist as UN treaty talks begin
South Korea is hosting the fifth and ostensibly final UN Intergovernmental Negotiating Committee (INC-5) meeting this week.
Transport Ministry to study proposal for senior citizen licence renewal assessments - Loke
The Transport Ministry will review a proposal requiring senior citizens aged 65 and above to undergo competency and health assessments before renewing their Malaysian Driving Licence.