REvil Ransomware Gang Suddenly Disappear – Dark Web Sites Are Down

REvil is one of the well-known Ransomware Gangs from Russia which is popular for its earlier and recent ransomware attacks. Apart from this, the REvil ransomware gang mainly targets political figures and big tech companies.

However, all the websites that were associated with the REvil ransomware group have currently disappeared from the Internet. 

According to several web reports, all those websites that are associated with REvil Ransomware Gang are no longer accessible, and all kinds of communications have been discontinued. 

REvil Ransomware Gang Suddenly Disappear

Apart from websites, the media that has been used by the group to communicate had also stopped. Even all the dark websites that are associated with the REvil ransomware group are now inaccessible.

Recently, REvil ransomware group has encrypted nearly 60 managed service providers (MSPs) and more than 1,500 individual businesses simply by utilizing a zero-day vulnerability in the Kaseya VSA remote management software.

This attack is one of the big attacks of REvil, and after implementing the attack, this ransomware gang has charged $70 million for a comprehensive decryptor for all victims that got affected by this attack but soon after the demand the group decreased the demanded price to $50 million.

Dismissal possibilities

According to the law enforcement team, security experts have raised few dismissal possibilities, and here we have mentioned them below:-

  • It might happened, because initially, the United States has made a strong settlement to attack the servers of this group.
  • It might happened due to the discussion between Vladimir Putin and Biden, and as a result, Russia has taken few actions to follow the United States’ demands. All this has been done to stop mutual relations from starting to undergo due to repeated attacks.
  • It may also be possible that the REvil group itself has eliminated all of its websites. However, their attacks have obtained nearly 42%, and it’s becoming quite risky for them to implement further attacks, that’s why doing this will help them a lot, and later the attackers could appear again under a new name and with new victims.

However, REvil ransomware group was in the spotlight as last month, the group has attacked JBS, the world’s biggest supplier of beef and poultry, as well as the second-largest producer of pork.

Moreover, the analysts are still trying their best to find the possible reasons and the loopholes for such a situation. Even they have also claimed that there are many possibilities and they are striving to know all of them as soon as possible.

Balaji

BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Recent Posts

Zero-Trust Policy Bypass Enables Exploitation of Vulnerabilities and Manipulation of NHI Secrets

A new project has exposed a critical attack vector that exploits protocol vulnerabilities to disrupt…

2 days ago

Threat Actor Sells Burger King Backup System RCE Vulnerability for $4,000

A threat actor known as #LongNight has reportedly put up for sale remote code execution…

2 days ago

Chinese Nexus Hackers Exploit Ivanti Endpoint Manager Mobile Vulnerability

Ivanti disclosed two critical vulnerabilities, identified as CVE-2025-4427 and CVE-2025-4428, affecting Ivanti Endpoint Manager Mobile…

2 days ago

Hackers Target macOS Users with Fake Ledger Apps to Deploy Malware

Hackers are increasingly targeting macOS users with malicious clones of Ledger Live, the popular application…

2 days ago

EU Targets Stark Industries in Cyberattack Sanctions Crackdown

The European Union has escalated its response to Russia’s ongoing campaign of hybrid threats, announcing…

2 days ago

Venice.ai’s Unrestricted Access Sparks Concerns Over AI-Driven Cyber Threats

Venice.ai has rapidly emerged as a disruptive force in the AI landscape, positioning itself as…

2 days ago