The harshest conclusion of HP Wolf Security's report is that cybercriminals are operating in an almost professional manner, delivering easy-to-launch, plug-and-play malware and ransomware attacks as software-as-a-service. This allows those with even the most basic skills to launch cyber attacks.

The new version improves the UI design of the ransom site, launches the organization's official blog site on the dark web, a document site showing evidence of the intrusion, a chat site to communicate with victims, and adds a Zcash cryptocurrency payment option.

By leveraging the operational security failures of threat actors and other techniques, Cisco Talos was able to identify TOR hidden services hosted on public IP addresses, some of which were previously unknown infrastructures associated with DarkAngels, Snatch, Quantum and Nokoyawa ransomware groups.

The city of Schlissheim, Germany, informed hundreds of citizens about the dark web data. About a month ago, unidentified individuals hacked into the city's IT systems, and these cybercriminals used malware ("ransomware") to encrypt the city's servers. They did not demand a ransom, but threatened to release the data on the dark web. After the deadline passed, their stolen internal documents were leaked on the Dark Web.

After analyzing REvil's dark web site, "ODN" believes that REvil has indeed made a comeback, and that it is not a phishing operation of the Russian Federal Security Service.

According to Trustwave SpiderLabs, members of the underground forum believe their countries are no longer safe havens and fear arrest. Some have suggested moving their ransomware operations to India, China, the Middle East or Israel.

A ransomware group that stole some confidential information held by the British police used "phishing" to attack an IT company serving the police, demanding ransom from the IT company called Dacoll.

Bitdefender is actively supporting this investigation by providing key technical insights throughout the process, as well as providing decryption tools for both prolific ransomware families to help victims recover their files. kpn and McAfee Enterprises are additional supportive partners who are also supporting the investigation by providing technical expertise to law enforcement. This investigation.

The hijack was first discovered by Dmitry Smilyanets of Recorded Future, who noted that an unknown person had hijacked the Tor hidden service (Onion domain) using the same private key as REvil's Tor sites, and may have had backups of those sites.

Comments made by Biden administration officials in an interview with POLITICO most clearly indicate that the U.S. played no direct role in the banning of REvil's website and other online infrastructure in recent days.