REvil Crushed By Enforcement Using ‘Compromised Backups’

Share post:

Several countries that work together to address the problem or cyber attacks, have recently took down the REvil Ransomware gang using one of the gang’s favorite tactics of compromised backups.

According to Reuters, “The FBI in conjunction with Cyber Command, the Secret Service, and like-minded countries, have truly engaged in significant disruptive actions against these groups.”

Previously, the FBI had hacked REvil’s servers and received a universal decryption key after Kaseya’s attack.

Holding onto the key, however, proved crucial, as it allowed the FBI and its collaborators to penetrate deep into REvil’s operations, as it also ensured that their software remained hidden in backups recently used by gang member “0 _ neday” to restore operations after initially going offline four days ago.

For more information, read the original story in Arstechnica.

Featured Tech Jobs

SUBSCRIBE NOW

Related articles

Cyber Security Today, Week in Review for week ending Friday, Feb. 23, 2024

This episode features discussion on the takedown of the LockBit ransomware gang

Breaking news: RCMP facing ‘alarming’ cyber attack

The RCMP is facing a serious cyber attack from an unspecified threat actor. The Mounties told CBC News today that a “breach of this magnitude is alarming.” “The situation is evolving quickly but at this time, there is no impact on RCMP operations and no known threat to the safety and security of Canadians,” a spokesperson

Leaked documents may show the inside of China’s hacking strategy

Documents apparently stolen by disgruntled employees to embarrass their firm may give insight into China's cyber

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways