Investing.com - Financial Markets Worldwide
Get 40% Off
Get 40% Off
🤯 Perficient is up a mind-blowing 53%. Our ProPicks AI saw the buying opportunity in March.Read full update

US officials seize extortion websites; ransomware hackers vow more attacks

Published 12/19/2023, 11:35 AM
Updated 12/19/2023, 06:36 PM
© Reuters. A U.S. Justice Department logo or seal showing Justice Department headquarters, known as "Main Justice," is seen behind the podium in the Department's headquarters briefing room before a news conference with the Attorney General in Washington, January 24,

By Raphael Satter and Christopher Bing

WASHINGTON (Reuters) -U.S. officials on Tuesday seized digital extortion websites associated with the notorious "Blackcat" ransomware gang, sparking a threat from the hackers to escalate their attacks.

Blackcat - also known as ALPHV or Noberus - is accused of working with the prolific hacking gang known as "Scattered Spider," which has terrorized major businesses including MGM Resorts (NYSE:MGM) International and Caesars (NASDAQ:CZR) Entertainment.

The Justice Department said in a statement that it had "gained visibility into the Blackcat ransomware group's computer network" and seized several websites used by the group, as well as hundreds of cryptographic keys that could be deployed to help rescue up to 500 hacking victims.

There was no mention of arrests or of action against Scattered Spider, a group believed by security researchers to be composed at least in part of young, native English speakers mainly from Western countries. The group has acted as the sharp end of the spear for Blackcat, seeding data-scrambling software on victims' devices which can typically only be removed following a massive ransom payment.

A Justice Department spokesperson declined to offer further comment, citing an ongoing investigation.

Some private sector analysts described the takedown as significant. Charles Carmakal, an executive with Alphabet (NASDAQ:GOOGL)'s Mandiant cybersecurity unit, said it was "a huge win for law enforcement and the community."

Others said it was only a matter of time before the hackers would regroup.

"Disruption will very likely only result in a temporary suppression of the threat," said Daniel Curtis, an analyst with cloud security company ZeroFox Holdings.

3rd party Ad. Not an offer or recommendation by Investing.com. See disclosure here or remove ads .

The hackers themselves promised to retaliate by extorting critical infrastructure providers and hospitals, according to screenshots of their threats captured by researchers at Dell Technologies (NYSE:DELL)' Secureworks and elsewhere.

"The group obviously now has an enormous reputation issue having been infiltrated by law enforcement," Secureworks researcher Keith Jarvis said. "It feels like bluster."

Reuters was unable to immediately contact the hackers for further comment.

Latest comments

Show us proof. These criminals are lying.
Propaganda from Justice Department; if these guys get caught, they get hired immediately by DOJ. Garland hasn't a clue, his main focus now is keeping BoBo from being impeached, so O'bamas 4th term can continue the destruction of America.
and you are support sedition inserection and the destruction of American democracy.. hopefully the FBI is keeping an eye on people that suppor the potential would be dictatorship of Donald Trump'. Proven crook, serial liar, tax cheat, and sexual molester.
you like to suck it.
Install Our App
Risk Disclosure: Trading in financial instruments and/or cryptocurrencies involves high risks including the risk of losing some, or all, of your investment amount, and may not be suitable for all investors. Prices of cryptocurrencies are extremely volatile and may be affected by external factors such as financial, regulatory or political events. Trading on margin increases the financial risks.
Before deciding to trade in financial instrument or cryptocurrencies you should be fully informed of the risks and costs associated with trading the financial markets, carefully consider your investment objectives, level of experience, and risk appetite, and seek professional advice where needed.
Fusion Media would like to remind you that the data contained in this website is not necessarily real-time nor accurate. The data and prices on the website are not necessarily provided by any market or exchange, but may be provided by market makers, and so prices may not be accurate and may differ from the actual price at any given market, meaning prices are indicative and not appropriate for trading purposes. Fusion Media and any provider of the data contained in this website will not accept liability for any loss or damage as a result of your trading, or your reliance on the information contained within this website.
It is prohibited to use, store, reproduce, display, modify, transmit or distribute the data contained in this website without the explicit prior written permission of Fusion Media and/or the data provider. All intellectual property rights are reserved by the providers and/or the exchange providing the data contained in this website.
Fusion Media may be compensated by the advertisers that appear on the website, based on your interaction with the advertisements or advertisers.
© 2007-2024 - Fusion Media Limited. All Rights Reserved.