Ransomware Group REvil Reportedly Taken Down By Multi-country Effort – Experts Reaction

BACKGROUND:

It’s been reported that a multi-government effort has resulted in notorious ransomware group REvil being taken offline and some of its servers allegedly hijacked.

Subscribe
Notify of
guest
2 Expert Comments
Newest
Oldest Most Voted
Inline Feedbacks
View all comments
Steve Forbes
Steve Forbes , Government Cyber Security Expert
InfoSec Expert
October 25, 2021 10:49 am

<p>In the fight against ransomware, it’s hard to overstate the significance of the reported multi-country takedown of the ransomware group, REvil. With the group forced offline and some of its servers allegedly hijacked, one of the most notorious ransomware operators – which carried out attacks against meatpacker JBS and software provider Kaseya earlier this year – has been disrupted.</p>
<p>Ransomware has increasingly taken centre stage this year, as it has disrupted global supply chains. Despite not always being a very sophisticated attack method, it achieves notoriety because of its real world impact. A combination of network analysis to identify the tell-tale signs of a ransomware attack, robust back-ups to aid recovery, and cross-country co-ordinated takedowns will be the key to stemming the flow of successful ransomware attacks in the future.</p>
<p>Whilst this is a major win in the battle against ransomware, we cannot rest easy as the organisations behind ransomware have generated significant income – giving them the ability to rebrand and reinvent themselves many times over. We can only hope that these law enforcement measures start to make the risk greater than the reward for cyber criminals.</p>

Last edited 1 year ago by Steve Forbes
Camellia Chan
Camellia Chan , CEO and Co-founder
InfoSec Expert
October 25, 2021 10:46 am

<p>The historically formidable REvil ransomware gang has been hacked and taken offline in a coordinated operation by multiple governments. Cyber experts working with intelligence agencies were able to breach REvil\’s computer network infrastructure, seizing control of some of their servers. Although a positive step in the fight against these cybercriminal gangs, it is not the time to get complacent – another ransomware incident is just around the corner. <u></u><u></u></p>
<p>For businesses, this should be a wake-up call to bolster defences. When developing a cybersecurity strategy, it’s important to remember that a staggering <u><a title=\"https://thehackernews.com/2021/02/why-human-error-is-1-cyber-security.html\" href=\"https://thehackernews.com/2021/02/why-human-error-is-1-cyber-security.html\" target=\"_blank\" rel=\"noopener\" data-saferedirecturl=\"https://www.google.com/url?q=https://thehackernews.com/2021/02/why-human-error-is-1-cyber-security.html&source=gmail&ust=1635242545888000&usg=AFQjCNHJ606-DoWCmNdH1c1Lul4X5T-jGg\">95 per cent</a></u> of data breaches are the result of human error. Anti-virus software alone is not enough – it requires too much input from the individual, like updating the software. Companies should adopt robust firmware as the last line of defence. And, incredible advancements in technology mean it’s now possible to have AI-infused SSD embedded into laptops to protect against every type of attack, from ransomware and malware all the way to physical security. Put simply, if the hacker can get hacked, so can you!</p>

Last edited 1 year ago by Camellia Chan
2
0
Would love your thoughts, please comment.x
()
x