Science & Technology

The Justice Department has seized $ 2.3 million paid to Colonial Pipeline ransomware extortionists.

The Justice Department has seized 63.7 Bitcoins, which are currently worth about $ 2.3 million. These funds are said to represent the proceeds of the May 8 ransom payments to individuals in a group known as DarkSide. Targeted colonial pipelineAs a result, critical infrastructure becomes inoperable.

“Following money continues to be one of the most basic yet powerful tools we have,” said the Deputy Attorney General. Lisa O. Monaco For the US Department of Justice. “Ransom payment Is the fuel that drives digital blackmail engines, and today’s announcement shows that all the tools available to the United States will make these attacks more expensive and less profitable for criminal companies. I will. We will continue to target the entire ransomware ecosystem to thwart and thwart these attacks. “

“There is no place out of the FBI’s reach to hide fraudulent funds that prevent them from imposing risks and consequences on malicious cyber attackers.” Paul Abate, FBI Deputy Director. “We will continue to use all available resources and leverage national and international partnerships to thwart ransomware attacks and protect our private sector partners and Americans.”

“Cybercriminals are adopting more elaborate plans to transform technology into digital blackmail tools,” said Deputy Federal Attorney for the Northern District of California. Stephanie Hines“We need to continue to improve cyber resilience of critical infrastructure across the country, including Northern California, and develop advanced ways to improve our ability to track and recover digital ransom payments. Will continue. “

On or around May 7, Colonial Pipeline was the victim of a widely reported ransomware attack, causing some of its infrastructure to fail. Colonial Pipeline reported to the FBI that its computer network was accessed by an organization named DarkSide and received and paid a ransom request for approximately 75 Bitcoins.

“It’s a big chase to try to identify the owner of a cryptocurrency wallet. There is no Bitcoin address registry that lists the owners of all addresses. To identify the owner of that address, use that address. You need to know where you got it from, but it’s still the end of the road. ” Anurag Glutz, CPO, Strike Ready.

As claimed in the supporting affidavit, law enforcement agencies tracked multiple Bitcoin remittances, and approximately 63.7 Bitcoin, equivalent to the victim’s ransom payment, was remitted to a particular address. I found out that. The FBI has a “private key,” a rough equivalent of the password needed to access an asset that can be accessed from a particular Bitcoin address. This Bitcoin represents revenue that can be traced back to property related to computer intrusion and money laundering and can be seized in accordance with criminal and civil confiscation laws.

“People who are willing to stockpile cryptocurrencies in the event of a ransomware attack or other emergency are crazy unless they are part of this business model, such as brokers. This is a dangerous endeavor. A better way to prepare for a ransomware attack is to implement a comprehensive cloud backup strategy so that you can get back online in a timely manner and pay the ransom even if your system goes offline. It may not be necessary. ” Matthew Rogers, Syntax CISO.

The Justice Department has seized $ 2.3 million paid to Colonial Pipeline ransomware extortionists.

https://www.helpnetsecurity.com/2021/06/08/colonial-pipeline-ransomware-extortionists/ The Justice Department has seized $ 2.3 million paid to Colonial Pipeline ransomware extortionists.

Back to top button