The Federal Bureau of Investigation (FBI) mentioned that as of November 2022, the notorious Hive ransomware gang has effectively extorted $100 million in ransom bills, from over 1,300 corporations international.
This used to be reported in a joint advisory revealed the previous day with the Cybersecurity and Infrastructure Safety Company (CISA) and the Division of Well being and Human Products and services (HHS).
As of November 2022, Hive ransomware actors have victimized over 1,300 corporations international, receiving roughly US$100 million in ransom bills, consistent with FBI knowledge.(…) Hive actors had been identified to reinfect—with both Hive ransomware or any other ransomware variant—the networks of sufferer organizations who’ve restored their community with out creating a ransom fee.
Organizations from quite a lot of industries and key infrastructure sectors, akin to executive amenities, communications, and IT, are a number of the sufferers, with a focal point on Healthcare and Public Well being (HPH) corporations.
FBI Stocks Signs of Compromise (IoCs) and TTPs
The joint advisory’s primary goal used to be to proportion Hive’s Signs of Compromise (IOCs) and Ways, Ways, and Procedures (TTPs) exposed by way of the FBI whilst investigating Hive ransomware campaigns – to be able to assist defenders to find malicious task connected to Hive associates and mitigate its affect.
FBI’s Recommendation to Lend a hand Mitigate Ransomware Assaults
Whilst the 3 executive businesses supporting the alert don’t suggest paying the ransoms, sufferers are requested to document Hive attacks to their native FBI box administrative center or to CISA at email@example.com irrespective of whether or not they pay the ransom. This may occasionally lend a hand legislation enforcement monitor ransomware task, save you assaults and hang attackers responsible, explains Bleeping Pc.
The FBI additionally recommends the next movements to assist mitigate ransomware assaults:
The notorious Hive is a Ransomware-as-a-Provider (RaaS) operation that has been round since no less than June 2021, with a number of of its contributors having labored for each Hive and the Conti cybercrime gang. The FBI has in the past launched proof of compromise and technical info associated with Hive ransomware assaults in August 2021.
The entire respectable joint advisory alert revealed by way of the FBI is to be had right here.