Friday, July 19, 2024

The U.S. is offering up to $10 million for Identity to Locate Sandworm Hacking Group

In an attempt to identify and track down six Russian GRU hackers who are members of the notorious Sandworm hacking group, the U.S. government is offering a reward of up to $10 million.

The U.S. government stated:-

“We are offering this bounty as part of the Department of State’s Rewards for Justice program as part of our commitment to pursuing justice.”

As part of this bounty program, informants are rewarded for information that helps identify or locate foreign government actors who may pose threats to the United States.

There are a number of threat actors that are specifically targeting critical infrastructure in the United States in order to carry out malicious cyber operations.

$10 Million Reward

For information leading to the identification or location of threat actors operating in the global computer network, Rewards for Justice is offering a reward of up to 10 million dollars.

They are mainly targeting the threat actors who perform the following tasks and come under the following bodies:-

  • Direction or comes under the control of a foreign government.
  • Participates in malicious activities against U.S. critical infrastructure in violation of the CFAA (Computer Fraud and Abuse Act).

It should be noted that the CFAA is violated in certain instances by malicious cyber attacks on the critical infrastructure of the US. Ransomware attacks are a form of extortion, and transmitting extortion threats as part of the attack is a violation of the statute.

However, the US Department of State has recently declared that they are searching for information about six Russian officers from the Main Intelligence Directorate of the GRU.

While all the above mentioned six individuals were indicted by the Department of Justice in 2020 as part of the Sandworm group, a Russian hacking group that is also known as:-

  • Team
  • Telebots
  • Voodoo Bear
  • Iron Viking

Furthermore, the Rewards of Justice is also seeking information about threats posed by other entities like:-

  • REvil ransomware
  • DarkSide ransomware
  • North Korean cybercrime threat actors
  • Nation-state hackers targeting U.S. businesses and critical infrastructure sectors.

A Tor website has also been set up by the Rewards of Justice, and here it is:-

  • Hhe5dybnt7sr6cm32xt77pazmtm65flqy6irivtflruqfc5ep7eiodiad.onion

And the above-mentioned website could be used to submit tips about these threat actors anonymously.

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity and hacking news updates.


Latest articles

Octo Tempest Know for Attacking VMWare ESXi Servers Added RansomHub & Qilin to Its Arsenal

Threat actors often attack VMware ESXi servers since they accommodate many virtual machines, which...

TAG-100 Actors Using Open-Source Tools To Attack Gov & Private Orgs

Hackers exploit open-source tools to execute attacks because they are readily available, well-documented, and...

macOS Users Beware Of Weaponized Meeting App From North Korean Hackers

Meeting apps are often targeted and turned into weapons by hackers as they are...

Hackers Exploiting Legitimate RMM Tools With BugSleep Malware

Since October 2023, MuddyWater, which is an Iranian threat group linked to MOIS, has...

Cybercriminals Exploit Attack on Donald Trump for Crypto Scams

Researchers at Bitdefender Labs remain ever-vigilant, informing users about the latest scams and internet...

New TE.0 HTTP Request Smuggling Flaw Impacts Google Cloud Websites

HTTP Request Smuggling is a flaw in web security that is derived from variations...

Volcano Demon Group Attacking Organizations With LukaLocker Ransomware

The Volcano Demon group has been discovered spreading a new ransomware called LukaLocker, which...
Guru baran
Guru baran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Free Webinar

Low Rate DDoS Attack

9 of 10 sites on the AppTrana network have faced a DDoS attack in the last 30 days.
Some DDoS attacks could readily be blocked by rate-limiting, IP reputation checks and other basic mitigation methods.
More than 50% of the DDoS attacks are employing botnets to send slow DDoS attacks where millions of IPs are being employed to send one or two requests per minute..
Key takeaways include:

  • The mechanics of a low-DDoS attack
  • Fundamentals of behavioural AI and rate-limiting
  • Surgical mitigation actions to minimize false positives
  • Role of managed services in DDoS monitoring

Related Articles