Hive Ransomware Network Dismantled by American, European Law Enforcement
Law enforcement authorities from over a dozen countries in Europe and North America have taken part in disrupting the activities of the Hive ransomware group, the U.S. Justice Department and Europol announced. Hive is believed to have targeted various organizations worldwide in the past couple of years, often extorting payments in cryptocurrency. Captured Decryption Keys Helped Hive Victims Avoid Paying $130 Million in Ransom
Ransomware network Hive, which has had around 1,500 victims in more than 80 countries, has been hit in a months-long disruption campaign, the U.S. Department of Justice (DOJ) and the European Union Agency for Law Enforcement Cooperation (Europol) revealed. A total of 13 nations participated in the operation, including EU member states, the U.K. and Canada.
Hive has been identified as a major cybersecurity threat as the ransomware has been used by affiliated actors to compromise and encrypt data and computer systems of government facilities, oil multinationals, IT and telecom companies in the EU and U.S., Europol said. Hospitals, schools, financial firms, and critical infrastructure have been targeted, the DOJ noted.
It has been one of the most prolific ransomware strains, Chainalysis pointed out, which has collected at least $100 million from victims since its launch in 2021. A recent report by the blockchain forensics company unveiled that revenue from such attacks has decreased last year, with a growing number of affected organizations refusing to pay the demanded ransoms.
According to the announcements by the law enforcement authorities, the U.S. Federal Bureau of Investigation (FBI) penetrated Hive’s computers in July 2022 and captured its decryption keys, providing them to victims around the world which prevented them from paying another $130 million.
Working with the German Federal Police and the Dutch High Tech Crime Unit, the Bureau has now seized control over the servers and websites that Hive used to communicate with its members and the victims, including the darknet domain where the stolen data was sometimes posted. FBI Director Christopher Wray was quoted as stating: The coordinated disruption of Hive’s computer networks … shows what we can accomplish by combining a relentless search for useful technical information to share with victims.
The Hive ransomware was created, maintained and updated by developers while being employed by affiliates in a ‘ransomware-as-a-service’ (RaaS) double extortion model, Europol explained. The affiliates would initially copy the data and then encrypt the files before asking for a ransom to decrypt the information and not publish it on the leak site.
The attackers exploited various vulnerabilities and used a number of methods, including single factor logins via Remote Desktop Protocol (RDP), virtual private networks (VPNs), and other remote network connection protocols as well as phishing emails with malicious attachments, the law enforcement agencies detailed. Tags in this story companies, Crypto, Cryptocurrency, darknet, DOJ, EU, Europol, Extortion, FBI, government facilities, hive, hospitals, IT, Law Enforcement, OIL, Payments, ransom, ransom payments, ransomware, Ransomware attacks, uk, US, Victims
Do you expect police authorities around the world to dismantle more ransomware networks in the near future? Tell us in the comments section below. Lubomir Tassev
Lubomir Tassev is a journalist from tech-savvy Eastern Europe who likes Hitchens’s quote: “Being a writer is what I am, rather than what I do.” Besides crypto, blockchain and fintech, international politics and economics are two other sources of inspiration. FTX Lawyers Attempt to Question Bankman-Fried’s Family and Inner Circle for Financial Insight NEWS | 4 hours ago Blur NFT Marketplace Surges in Volume and Market Share, Rivaling Industry Leader Opensea NEWS | 1 day ago
Image Credits: Shutterstock, Pixabay, Wiki Commons Previous articleFTX Lawyers Attempt to Question Bankman-Fried’s Family and Inner Circle for Financial Insight Next articleCalifornia DMV Is Putting Its Titles on the Blockchain Disclaimer: This article is for informational purposes only. It is not a direct offer or solicitation of an offer to buy or sell, or a recommendation or endorsement of any products, services, or companies. Bitcoin.com does not provide investment, tax, legal, or accounting advice. Neither the company nor the author is responsible, directly or indirectly, for any damage or loss caused or alleged to be caused by or in connection with the use of or reliance on any content, goods or services mentioned in this article. Read disclaimerShow comments More Popular NewsIn Case You Missed ItPrivacy-Centric Monero Plans for July Hard Fork, Plans Include Ring Signature, Bulletproof Upgrade
According to a recent update on Monero’s Github repository, the privacy-centric crypto network plans to hard fork in July, at block height 2,668,888. Monero is the largest privacy crypto asset in terms of market capitalization and during the last seven ... read more.FBI Issues Alert Concerning Malicious State-Sponsored North Korean Hackers Targeting Crypto Firms Survey: Adoption in Argentina Grows, With 12 out of 100 Adults Having Invested in Crypto Digital Ruble ‘Much Needed,’ Russia’s Central Bank Says, Won’t Delay Testing Ethereum Foundation"s Financial Report Discloses It Holds $1.6 Billion in Assets, 80.5% Held in Ether