REvil websites disappear from the web
Usually vocal group has been uncharacteristically silent following Kaseya attacks
When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.
Websites for the Russia-based REvilransomwaregang, both on the dark web and the normal web, have gone offline.
All of REvil online presence, including its ransom negotiating portal, the website where it shares exfiltrated data, and a blog it used to boast about its latest exploits, have all been knocked offline.
According tocybersecurityexperts, most other threat actors have a tendency to occasionally cycle the connectivity of their online infrastructure. However, the comprehensive shutdown does seem unusual and is perhaps the result of action by law enforcement agencies.
We’re looking at how our readers use VPNs with streaming sites like Netflix so we can improve our content and offer better advice. This survey won’t take more than 60 seconds of your time, and you can also choose to enter the prize draw to win a $100 Amazon voucher or one of five 1-year ExpressVPN subscriptions.
Click here to start the survey in a new window«
Government action?
REvil has been behind some of the most extravagant ransomware operations of late including the one against managed service providers (MSP) by exploiting a vulnerability in the Kaseya VSA remote management software toinfect thousands of computersaround the world.
Action against Russia-based threat actors, such as REvil, featured prominently in the recentUS-Russian Presidential talksin Geneva.
TheBBCadds that US President Joe Biden said he raised the issue with his Russian counterpart, Vladimir Putin, again during a phone call last week, telling reporters that he “made it very clear to him…we expect them to act” against the threat actors while hinting that the US could take matters in its own hands if Russia fails to act.
The timing of the outage has sparked speculation that it could be the result of either the US or Russian officials tightening the noose around REvil, though there has been no official statement from any of the parties involved.
Are you a pro? Subscribe to our newsletter
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
ViaBBC
With almost two decades of writing and reporting on Linux, Mayank Sharma would like everyone to think he’sTechRadar Pro’sexpert on the topic. Of course, he’s just as interested in other computing topics, particularly cybersecurity, cloud, containers, and coding.
This new malware utilizes a rare programming language to evade traditional detection methods
A new form of macOS malware is being used by devious North Korean hackers
I’ve been covering Apple Watch deals for years – This is the one model most people should buy on Black Friday
