Russia's FSB shuts down reputable ransomware gang REvil - TechCrunch
Russia's Federal Security Service (FSB) announced on Friday that it has looted and shut down the activities of the notorious ransomware group REvil.
As a result of the unprecedented move - which will undoubtedly send a message to other ransomware organizations operating outside the country - Russian authorities raided 25 addresses across the Moscow, St. Petersburg and Lipetsk regions. belonged to 14 suspicious members of REvil.
The gang, which closed operations in July before returning in September, is thought to have carried out some of the most destructive attacks in the past 12 months, including those targeting Colonial Pipeline, JBS Foods and U.S. technology company Kaseya.
The FSB said it seized more than 426 million rubles and € 500,000 (about $ 6 million), as well as $ 600,000 in cash, and cryptocurrency wallets, computers and 20 high-end cars.
In a statement, the FSB said it carried out the investigation at the request of U.S. authorities, who were notified of their findings.
The arrested members of the ransomware group have been charged under Russian law with "illegal circulation of payment methods." Russian authorities have not released the names of any suspects.
"As a result of the joint actions of the FSB and the Russian Ministry of Internal Affairs, the organized criminal community ceased to exist, the information infrastructure used for criminal purposes was neutralized," the FSB said. in a statement.
News of the FSB's astonishing activity comes just two months after the U.S. Department of Justice charged a 22-year-old Ukrainian citizen linked to REvil's ransomware gang for staging the July ransomware attack against US technology company Kaseya. Another seven members of the REvil gang were also arrested throughout 2022 following an action coordinated by Europol. In July, President Biden urged Russia to pursue the suit, urging Russian President Vladimir Putin to take action to harass these criminal groups.
The action taken by the FSB also comes just hours after a major cyber attack took down government websites in Ukraine on Friday, including websites for the foreign ministry, national security and defense council and cabinet of government ministers. Officials said it was too early to make any decisions but marked a "long record" of cyber-attacks in Russia against Ukraine.