US offers $10 million for tips on Hive ransomware leadership

Trending 3 weeks ago

Hive ransomware

The U.S. State Department offers rewards of up to $10 cardinal for accusation that could thief locate, identify, aliases apprehension members of nan Hive ransomware gang.

The FBI says this ransomware group had extorted astir $100 cardinal from complete 1,300 companies crossed much than 80 countries betwixt June 2021 and November 2022.

"Today, nan Department of State is announcing a reward connection of up to $10,000,000 for accusation starring to nan recognition and/or location of immoderate individual(s) who clasp a cardinal activity position successful nan Hive ransomware version transnational organized crime group," nan State Department said.

"In addition, we are besides announcing a reward of up to $5,000,000 for accusation starring to nan apprehension and/or condemnation of immoderate individual successful immoderate state colluding to participate successful aliases attempting to participate successful Hive ransomware activity."

In January 2023, nan U.S. authorities also announced rewards of up to $10 million for tips that could thief nexus Hive ransomware (or different threat groups) pinch overseas governments.

The State Department has antecedently announced bounties of up to $15 cardinal for location accusation connected members of nan Clop, Conti [1, 2], REvil (Sodinokibi), and Darkside ransomware operations.

These rewards are offered done nan Transnational Organized Crime Rewards Program (TOCRP), pinch complete $135 cardinal paid for adjuvant tips since 1986.

Hive ransomware hacked by the FBI

The connection comes aft an world rule enforcement cognition led to nan seizure of Hive ransomware's Tor websites successful January 2023.

As portion of this associated action, FBI agents infiltrated Hive servers astatine a hosting supplier successful California successful July 2022 and secretly monitored nan gang's activity for six months (Dutch rule enforcement besides gained entree to Hive's backup servers successful nan Netherlands).

"Since precocious July 2022, nan FBI has penetrated Hive's machine networks, captured its decryption keys, and offered them to victims worldwide, preventing victims from having to salary $130 cardinal successful ransom demanded," nan Justice Department said.

"Since infiltrating Hive's web successful July 2022, nan FBI has provided complete 300 decryption keys to Hive victims who were nether attack. In addition, nan FBI distributed complete 1,000 further decryption keys to erstwhile Hive victims."

Besides decryption keys, nan FBI besides discovered Hive connection records, malware record hashes, and accusation connected 250 affiliates.

The Hive ransomware-as-a-service (RaaS) cognition surfaced successful June 2021, and its operators are known for breaching organizations via phishing campaigns, exploiting vulnerabilities successful internet-exposed devices, and utilizing purchased credentials.

Unlike different ransomware groups that debar targeting emergency services and healthcare entities, Hive does not discriminate and will breach and encrypt immoderate target.