The ransomware group REvil has been taken offline by US intelligence and law enforcement agencies and a number of their allies, the news agency Reuters Allegations.

The agency cited three private sector security experts working with the US government and an ex-official as sources.

The news on Wednesday popped up that the REvil site was offline on the dark web. A Dmitry Smilyanets who works for the threat intelligence company Recorded Future and also for. writes The recording, a website of the company, claimed to have found a thread claiming to be the cause of REvil’s disappearance. The CIA’s investment arm, In-Q-Tel, is an investor in Recorded Future.

The ransomware threat researcher Brett Callow of the New Zealand security company Emsisoft had warned the same day about the talk to believe the incident. REvil, also known as Sodinokibi, only attacks systems running Microsoft’s Windows operating system.


VMware head of cyber security strategy Tom Kellerman was quoted by Reuters With the words, “The FBI, in conjunction with Cyber ​​Command, Secret Service and like-minded countries, has taken really significant disruptive actions against these groups.”

Kellerman is an advisor to the US cybercrime agency.

REvil went offline for the first time in July after the ransomware got used to it attack about 60 managed service providers using a zero day bug in the Kaseya VSA remote management software. Kaseya is a solution developer for MSPs.

About two months later, REvil came back on-line. There has been speculation that REvil’s dark web operations disappeared in July due to a technical issue. When the site was back online it was assumed that the operators were just on guard.

The pressure on ransomware gangs increased afterwards a hit on the US Colonial Pipeline in May by the DarkSide ransomware gang.

That was further exacerbated after the Kaseya incident when US President Joe Biden raised the issue during talks with his Russian counterpart, Vladimir Putin.

The US has convened an online meeting of about 31 countries recently to discuss steps to prevent ransomware attacks, but for unknown reasons neither Russia nor China were invited

Oleg Skulkin, deputy head of the forensic laboratory of the Russian security company Group-IB, said: “The REvil ransomware gang restored the infrastructure from the backups on the assumption that it was not compromised.

“Ironically, the gang’s favorite tactic of compromising backups was turned against them.”

ADVERTISE YOUR WEBINAR ON ITWIRE

It’s all about webinars.

Marketing budgets are now focused on webinars combined with lead generation.

If you want to promote a webinar, we recommend at least a 3 to 4 week campaign in advance of your event.

The iTWire campaign will include extensive advertisements on our news site itwire.com and prominent newsletter advertisements https://itwire.com/itwire-update.html as well as promotional messages and editorials. Plus a video interview of the keynote speaker on iTWire TV https://www.youtube.com/c/iTWireTV/videos, which is used in advertisements on the iTWire homepage.

Now we come from Lockdown iTWire will focus on helping you with your webinars and campaigns, and through partial payments and extended terms, a webinar business booster package and other support programs. We can also create your ads and written content, and coordinate your video interview.

We look forward to discussing your campaign goals with you. Please click the button below.

MORE INFO HERE!

INTRODUCING ITWIRE TV

iTWire TV brings unique value to the tech sector by providing a range of video interviews, news, views and reviews, and also gives vendors the opportunity to promote your business and marketing messages.

We’ll work with you to develop the message and conduct the interview or product review in a safe and collaborative manner. In contrast to other tech YouTube channels, we create a story around your message and publish it on the ITWire homepage by linking to your message.

In addition, your interview post message can be displayed in up to 7 different post ads on our website iTWire.com to drive traffic and readers to your video content and downloads. This can be a significant lead generation opportunity for your business.

We also offer 3 videos in one recording / session if you wish so that you have a range of videos to promote to your clients. Your sales team can add your emails to the sales documents and footer of their sales and marketing emails.

See the latest in tech news, views, interviews, reviews, product promos and events. Plus funny videos from our readers and customers.

SEE WHAT’S ON ITWIRE TV NOW!

.

Source link
#iTWire #Windows #REvil #ransomware #gang #defeated #spies #allies #claim

Leave a Reply