- US legislation enforcement claims BlackSuit is totally dismantled
- The companies seized servers, domains and digital belongings
- Since 2022, the group hit 450 firms and stole hundreds of thousands of {dollars}
BlackSuit, a ransomware group and a successor to the Royal gang, managed to compromise 450 organizations in the USA and steal $370 million in ransom funds, earlier than being dismantled by US legislation enforcement brokers, the US Division of Homeland Safety (DHS) has mentioned.
A press launch printed on the US Immigration and Customs Enforcements (ICE) web site, mentioned ICE’s Homeland Safety Investigations (its primary investigative arm), in coordination with each US and worldwide legislation enforcement brokers, “efficiently dismantled essential infrastructure utilized by BlackSuit ransomware”.
“The operation resulted within the seizures of servers, domains and digital belongings used to deploy ransomware, extort victims, and launder proceeds,” it was mentioned.
No arrests
The announcement mentioned that since 2022, Royal and BlackSuit ransomware teams have compromised greater than 450 identified victims in the USA, together with healthcare, training, public security, power, and authorities sector organizations.
These assaults introduced them greater than $370 in cryptocurrency, based mostly on at the moment’s costs.
Sadly, nobody was arrested, and if historical past taught us something – these menace actors will likely be again sooner reasonably than later.
Whereas disrupting the infrastructure is a commendable transfer and will definitely make issues troublesome for the menace actors within the short-term, they may don’t have any points reestablishing the {hardware}, particularly with $370 million of their pocket.
Signal as much as the TechRadar Professional publication to get all the highest information, opinion, options and steering your small business must succeed!
Beforehand, the FBI, US Homeland Safety, the US Division of Justice (DoJ), and different companions, defaced BlackSuit’s primary web site, in addition to extortion and information leak websites, in a sting known as “Operation Checkmate”.
A US Division of Well being and Human Providers report printed in late November 2023 mentioned BlackSuit was first noticed in Might that yr, displaying “hanging parallels with Royal, the direct successor of the previous infamous Russian-linked Conti operation”.
“This operation strikes a essential blow to BlackSuit’s infrastructure and operations,” mentioned US Secret Service Legal Investigative Division Particular Agent in Cost William Mancino.
“The US Secret Service is dedicated to working alongside our legislation enforcement companions to dismantle prison enterprises and forestall the deployment of malicious ransomware that victimizes companies and organizations.”
By way of BleepingComputer
You may also like
- High ransomware group BlackSuit has darkish net extortion websites seized and shut down
- Check out our information to the very best authenticator app
- We've rounded up the very best password managers