ALPHV ransomware dark website seized by FBI

The FBI, with international partners, seized BlackCat/ALPHV’s infrastructure

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

Several websites belonging to the ALPHV ransomware group (also known as BlackCat) have been seized, and the decryptor for themalwarereleased, authorities have announced.

The U.S. Department of Justice (DoJ) published a press release announcing the disruption of ALPHV’s infrastructure, and the subsequent release of the decryptor that helped roughly 500 victims in the US, and around the world.

This is the result of a joint, coordinated action, led by the FBI, in which multiple law enforcement agencies participated,TechCrunchreported, among which are the police departments from the UK, Denmark, Germany, Spain, and Australia. Europol also confirmed being involved in the operation but declined to share further details.

Hacking the hackers

Reports also indicate that the entire operation was made possible thanks to a “confidential human source” who was close with the group and gave the agents access to ALPHV’s affiliate panel, where the hackers managed their victims.

ALPHV’s data leak site has been seized, and visitors are now greeted with the typical FBI takedown defacement page.

BlackCat was one of the most active, dangerousransomwaregroups out there. It infected hundreds of organizations and encrypted thousands of computers around the world. Among its victims were critical infrastructure organizations, too, the DoJ confirmed. The release of a decryptor will enable victims to regain access to their sensitive data and deter those currently blocked from succumbing to the temptation to pay the ransom.

The FBI says BlackCat is currently demanding some $68 million from its victims.

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

“In disrupting the BlackCat ransomware group, the Justice Department has once again hacked the hackers,” said Deputy Attorney General Lisa O. Monaco. “With a decryption tool provided by the FBI to hundreds of ransomware victims worldwide, businesses and schools were able to reopen, and health care and emergency services were able to come back online. We will continue to prioritize disruptions and place victims at the center of our strategy to dismantle the ecosystem fueling cybercrime.”

More from TechRadar Pro

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

Cisco issues patch to fix serious flaw allowing possible industrial systems takeover

Washington state court systems taken offline following cyberattack

Your doctor may have an AI assistant taking notes during your next Zoom call