Brother
Professional
- Messages
- 2,590
- Reaction score
- 539
- Points
- 113
What was the cause-a technical glitch or an FBI raid?
The websites of the ALPHV ransomware group (also known as BlackCat) have been unavailable for the past 4 days. The failure occurred suddenly, raising suspicions about the intervention of law enforcement agencies.
The ALPHV Group's (also known as BlackCat) negotiation and data leak sites suddenly became inaccessible on December 7 and continue to be inaccessible to this day. BleepingComputer also confirmed that the unique URLs of Tor network negotiations specified in the ransom notes are also unavailable, which indicates a failure in the public infrastructure of the grouping and the current negotiations are stopped.
ALPHV Data Leak Site
Responding to a question about the crashes yesterday, an ALPHV administrator told BleepingComputer that the sites may soon be working again. The administrator's Tox status states that the servers are being restored, but the cause of the failures is not specified.
Tox Admin
BleepingComputer suggests that the reason for the unavailability of sites could be the actions of law enforcement agencies, which is also hinted at by other sources. In particular, social network user X Evangelos G. claims that " the ALPHV/BlackCat group may have been visited by FBI agents."
Evangelos G Tweet
The information security company RedSense Intel also confirmed the information, announcing the closure of the group's servers as a result of law enforcement actions. However, BleepingComputer could not independently confirm the fact of hacking ALPHV servers, and the agency refrained from commenting on this.
Recall that the successful intervention of the FBI in the Hive group put an end to criminal activity. The agents managed to infiltrate the group (most likely by recruiting one of the participants), gain the trust of hackers and find out the most important secrets. After six months of surveillance, in January of this year , the criminals were arrested, and their IT infrastructure was also dismantled.
In addition, in March it became known that the infrastructure of the LockBit grouping was disabled. Some industry experts have linked the outage to a takeover of the FBI group's servers, as was the case with the Hive group in January.
The websites of the ALPHV ransomware group (also known as BlackCat) have been unavailable for the past 4 days. The failure occurred suddenly, raising suspicions about the intervention of law enforcement agencies.
The ALPHV Group's (also known as BlackCat) negotiation and data leak sites suddenly became inaccessible on December 7 and continue to be inaccessible to this day. BleepingComputer also confirmed that the unique URLs of Tor network negotiations specified in the ransom notes are also unavailable, which indicates a failure in the public infrastructure of the grouping and the current negotiations are stopped.
ALPHV Data Leak Site
Responding to a question about the crashes yesterday, an ALPHV administrator told BleepingComputer that the sites may soon be working again. The administrator's Tox status states that the servers are being restored, but the cause of the failures is not specified.
Tox Admin
BleepingComputer suggests that the reason for the unavailability of sites could be the actions of law enforcement agencies, which is also hinted at by other sources. In particular, social network user X Evangelos G. claims that " the ALPHV/BlackCat group may have been visited by FBI agents."
Evangelos G Tweet
The information security company RedSense Intel also confirmed the information, announcing the closure of the group's servers as a result of law enforcement actions. However, BleepingComputer could not independently confirm the fact of hacking ALPHV servers, and the agency refrained from commenting on this.
Recall that the successful intervention of the FBI in the Hive group put an end to criminal activity. The agents managed to infiltrate the group (most likely by recruiting one of the participants), gain the trust of hackers and find out the most important secrets. After six months of surveillance, in January of this year , the criminals were arrested, and their IT infrastructure was also dismantled.
In addition, in March it became known that the infrastructure of the LockBit grouping was disabled. Some industry experts have linked the outage to a takeover of the FBI group's servers, as was the case with the Hive group in January.
