REvil Ransomware Gang Suddenly Disappear – Dark Web Sites Are Down

REvil is one of the well-known Ransomware Gangs from Russia which is popular for its earlier and recent ransomware attacks. Apart from this, the REvil ransomware gang mainly targets political figures and big tech companies.

However, all the websites that were associated with the REvil ransomware group have currently disappeared from the Internet. 

According to several web reports, all those websites that are associated with REvil Ransomware Gang are no longer accessible, and all kinds of communications have been discontinued. 

REvil Ransomware Gang Suddenly Disappear

Apart from websites, the media that has been used by the group to communicate had also stopped. Even all the dark websites that are associated with the REvil ransomware group are now inaccessible.

Recently, REvil ransomware group has encrypted nearly 60 managed service providers (MSPs) and more than 1,500 individual businesses simply by utilizing a zero-day vulnerability in the Kaseya VSA remote management software.

This attack is one of the big attacks of REvil, and after implementing the attack, this ransomware gang has charged $70 million for a comprehensive decryptor for all victims that got affected by this attack but soon after the demand the group decreased the demanded price to $50 million.

Dismissal possibilities

According to the law enforcement team, security experts have raised few dismissal possibilities, and here we have mentioned them below:-

  • It might happened, because initially, the United States has made a strong settlement to attack the servers of this group.
  • It might happened due to the discussion between Vladimir Putin and Biden, and as a result, Russia has taken few actions to follow the United States’ demands. All this has been done to stop mutual relations from starting to undergo due to repeated attacks.
  • It may also be possible that the REvil group itself has eliminated all of its websites. However, their attacks have obtained nearly 42%, and it’s becoming quite risky for them to implement further attacks, that’s why doing this will help them a lot, and later the attackers could appear again under a new name and with new victims.

However, REvil ransomware group was in the spotlight as last month, the group has attacked JBS, the world’s biggest supplier of beef and poultry, as well as the second-largest producer of pork.

Moreover, the analysts are still trying their best to find the possible reasons and the loopholes for such a situation. Even they have also claimed that there are many possibilities and they are striving to know all of them as soon as possible.

Balaji

BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Recent Posts

Threat Actors Exploit Google Docs And Weebly Services For Malware Attacks

Phishing attackers used Google Docs to deliver malicious links, bypassing security measures and redirecting victims…

11 hours ago

Python NodeStealer: Targeting Facebook Business Accounts to Harvest Login Credentials

The Python-based NodeStealer, a sophisticated info-stealer, has evolved to target new information and employ advanced…

12 hours ago

XSS Vulnerability in Bing.com Let Attackers Send Crafted Malicious Requests

A significant XSS vulnerability was recently uncovered in Microsoft’s Bing.com, potentially allowing attackers to execute…

14 hours ago

Meta Removed 2 Million Account Linked to Malicious Activities

 Meta has announced the removal of over 2 million accounts connected to malicious activities, including…

18 hours ago

Veritas Enterprise Vault Vulnerabilities Lets Attackers Execute Arbitrary Code Remotely

Critical security vulnerability has been identified in Veritas Enterprise Vault, a widely-used archiving and content…

19 hours ago

7-Zip RCE Vulnerability Let Attackers Execute Remote Code

A critical security vulnerability has been disclosed in the popular file archiving tool 7-Zip, allowing…

19 hours ago