ALPHV ransomware dark website seized by FBI

News
By published

The FBI, with international partners, seized BlackCat/ALPHV's infrastructure

Ransomware
(Image credit: Pixabay)

Several websites belonging to the ALPHV ransomware group (also known as BlackCat) have been seized, and the decryptor for the malware released, authorities have announced.

The U.S. Department of Justice (DoJ) published a press release announcing the disruption of ALPHV’s infrastructure, and the subsequent release of the decryptor that helped roughly 500 victims in the US, and around the world. 

This is the result of a joint, coordinated action, led by the FBI, in which multiple law enforcement agencies participated, TechCrunch reported, among which are the police departments from the UK, Denmark, Germany, Spain, and Australia. Europol also confirmed being involved in the operation but declined to share further details.

Hacking the hackers

Reports also indicate that the entire operation was made possible thanks to a “confidential human source” who was close with the group and gave the agents access to ALPHV’s affiliate panel, where the hackers managed their victims. 

ALPHV’s data leak site has been seized, and visitors are now greeted with the typical FBI takedown defacement page.

BlackCat was one of the most active, dangerous ransomware groups out there. It infected hundreds of organizations and encrypted thousands of computers around the world. Among its victims were critical infrastructure organizations, too, the DoJ confirmed. The release of a decryptor will enable victims to regain access to their sensitive data and deter those currently blocked from succumbing to the temptation to pay the ransom.

The FBI says BlackCat is currently demanding some $68 million from its victims. 

“In disrupting the BlackCat ransomware group, the Justice Department has once again hacked the hackers,” said Deputy Attorney General Lisa O. Monaco. “With a decryption tool provided by the FBI to hundreds of ransomware victims worldwide, businesses and schools were able to reopen, and health care and emergency services were able to come back online. We will continue to prioritize disruptions and place victims at the center of our strategy to dismantle the ecosystem fueling cybercrime.”

More from TechRadar Pro

Sead Fadilpašić

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

Read more
Ransomware
8base ransomware site taken down in global police operation
Cryptocurrencies
Ransomware’s favorite Russian crypto exchange seized by law enforcement
A concept image of someone typing on a computer. A red flashing danger sign is above the keyboard and nymbers and symbols also in glowing red surround it.
A major FBI operation has deleted Chinese malware from thousands of US computers
Cyber crime concept with man in handcuffs
Global police operation takes down major cybercrime and hacking forums
Cl0p ransomware group says it was behind Cleo attacks
Lock on Laptop Screen
Clop ransomware lists Cleo cyberattack victims
Latest in Security
China
Volt Typhoon threat group had access to American utility networks for the best part of a year
Abstract image of cyber security in action.
MassJacker malware targets those looking for pirated software
Code Skull
US government warns Medusa ransomware has hit hundreds of critical infrastructure targets
An American flag flying outside the US Capitol building against a blue sky
The FCC is creating a security council to bolster US defenses against cyberattacks
Image depicting hands typing on a keyboard, with phishing hooks holding files, passwords and credit cards.
Microsoft warns about a new phishing campaign impersonating Booking.com
Ransomware
Microsoft uncovers sleuthy new XCSSET MacOS malware campaign
Latest in News
Jason Sudeikis' Ted Lasso pointing at someone in Ted Lasso season 2
Believe it, baby: Ted Lasso season 4 is officially in development for Apple TV+ – and Jason Sudeikis will reprise his role as the titular soccer coach
Rainbow Six Siege X promotional art.
The Tom Clancy's Rainbow Six Siege X 6v6 mode might finally pull me away from Black Ops 6
A close up of the new web version of Apple Music Classical
Apple Music Classical is now available on the web, but its Mac app is still nowhere in sight
Silent Hill f
Silent Hill f will present players with 'a beautiful yet terrifying choice', and I can't wait to see what it is
Google Chromecast 2
Google is finally rolling out a fix for broken Chromecasts – just as new bugs appear on the Chromecast with Google TV
Garmin Instinct 3 in Neotropic Green
"I'm an idiot": Garmin user reveals how fixing one setting completely changed their training after months of making no progress
More about security
Code Skull

US government warns Medusa ransomware has hit hundreds of critical infrastructure targets
Abstract image of cyber security in action.

MassJacker malware targets those looking for pirated software
China

Volt Typhoon threat group had access to American utility networks for the best part of a year
See more latest
Most Popular
China
Volt Typhoon threat group had access to American utility networks for the best part of a year
Jason Sudeikis' Ted Lasso pointing at someone in Ted Lasso season 2
Believe it, baby: Ted Lasso season 4 is officially in development for Apple TV+ – and Jason Sudeikis will reprise his role as the titular soccer coach
Code Skull
US government warns Medusa ransomware has hit hundreds of critical infrastructure targets
A close up of the new web version of Apple Music Classical
Apple Music Classical is now available on the web, but its Mac app is still nowhere in sight
Silent Hill f
Silent Hill f will present players with 'a beautiful yet terrifying choice', and I can't wait to see what it is
Rainbow Six Siege X promotional art.
The Tom Clancy's Rainbow Six Siege X 6v6 mode might finally pull me away from Black Ops 6
A woman holds a phone and looks concerned in Caught
Netflix drops an eerie trailer for a new Harlan Coben show – I just hope Caught is better than the author's previous TV adaptations
The TikTok logo appears on a smartphone screen with the United States flag in the background
Oracle could still end up running TikTok
Google Chromecast 2
Google is finally rolling out a fix for broken Chromecasts – just as new bugs appear on the Chromecast with Google TV
Apple iPhone 16e REVIEW
Some iPhone 16e owners are reporting Bluetooth audio issues that could be an iOS problem