The REVIL ransomware group has mysteriously disappeared from the web without a trace after demanding a $70M ransom payout in Bitcoin
The infamous ransomware group REVIL has mysteriously vanished without a trace.
Websites and other digital infrastructure that belonged to the hackers, who are believed to be from either Eastern Europe or Russia, went dark on Tuesday.
Information security blog Bleeping Computer says ” All REVIL sites are down, including payment sites and data leak pages”.
Biden promises ‘consequences’ for Russian hackers
It’s unclear why the group has gone dark, but it comes after US President Joe Biden told Russia’s President Vladimir Putin that there would be ‘consequences’ if the Kremlin didn’t address the ongoing spate of ransomware attacks.
Biden has previously stressed the importance of addressing hacks, acknowledging their threat to critical infrastructure that is relied on by Americans. However, speculation is still mounting as to why REVIL has suddenly disappeared.
Cybersecurity firm Exabeam told CNN, “this outage could be criminal maintenance, planned retirement, or, more likely, the result of an offensive response to the criminal enterprise’.
This comes after the group asked for a $70M ransom in Bitcoin from victims of a recent hack. They promised to release a ‘universal decryptor key’ to all victims if anyone was willing to pay the ransom.
The REVIL gang posted a blog entry on its personal website on the dark web taking credit for the audacious cyber attack on MSP providers in the US which they claim affected over a million systems.
“Everyone will be able to recover from the attack in less than an hour,” the post read.
Will the companies pay the ransom?
The general advice from cyber-security experts is to not pay hackers to retrieve their data, because it encourages future attacks.
However, John Hammond from Huntress Labs doesn’t believe the situation is so simple. The cybersecurity firm Huntress Labs Inc is leading the investigation into the attack.
“This is an extremely intricate and tough situation,” he said in a private Twitter message to Ticker reporters.
“You have to make the decision that is best for your business,” he said.
REvil has shared an update on their personal dark web site. Their asking price to decrypt ALL victims is $70,000,000 USD. pic.twitter.com/e5WDWxDE53
The attack targeted more than 20 managed service providers (MSP). Yesterday, Huntress Labs anticipated the hack had affected more than 1000 businesses, which expectations that the figure would grow based on reports from the providers and a Reddit thread tracking the hack.
“It’s reasonable to think this could potentially be impacting thousands of small businesses,” tweeted John Hammond from Huntress Labs. Hammond says the attack targeted a software supplier called Kaseya.
Biden has sinced called for US intelligence to conduct a “deep dive” into the attacks. “We’re not sure it’s the Russians,” he said. “The initial thinking was, it was not the Russian government, but we’re not sure yet.”
#MSP organizations using #Kaseya VSA are being compromised by a critical ransomware incident that is active and ongoing. We are sharing all the details we know here: https://t.co/MdFQ6UdYNk
Another victim of the attack is Sweden, which has seen around 500 supermarkets unable to trade.
Coop Sweden has closed half of its 800 stores after its point-of-sale tills and self-service checkouts stopped working just before the weekend.
The supermarket itself was not targeted by hackers. However, because it uses on of the affected MSPs it too has fallen victim to the attack.
Cybersecurity becomes and international security issue
This comes as the latest in a string of ransomware attacks in recent months, including the attack on JBS. Experts have also attributed the JBS attack to the REvil cyber gang.
William is an Executive News Producer at TICKER NEWS, responsible for the production and direction of news bulletins. William is also the presenter of the hourly Weather + Climate segment.
With qualifications in Journalism and Law (LLB), William previously worked at the Australian Broadcasting Corporation (ABC) before moving to TICKER NEWS. He was also an intern at the Seven Network's 'Sunrise'.
A creative-minded individual, William has a passion for broadcast journalism and reporting on global politics and international affairs.
OpenAI has taken another giant leap forward with the launch of ChatGPT Atlas — an AI-powered web browser that could redefine how people search, explore, and interact online. Investors and competitors are watching closely as this new technology challenges the dominance of traditional browsers like Google Chrome.
With ChatGPT Atlas, users may soon experience a web that feels less like typing into a search box and more like conversing with an intelligent assistant. The integration of AI could make browsing faster, more intuitive, and more personalised than ever before — but it also raises serious questions about privacy and data use.
As AI becomes more deeply embedded in the digital world, ChatGPT Atlas could represent the next major step toward a fully AI-driven online experience. What does this mean for users — and for the tech giants trying to keep up?
In Short:
– OpenAI partners with Bryan Cranston and unions to combat deepfakes on its Sora app.
– The app now includes options for people to control their likenesses and voices.
OpenAI announced it will work with Bryan Cranston, SAG-AFTRA, and actor unions to combat deepfakes on its AI video app, Sora.Cranston voiced concerns after unauthorized AI-generated clips featuring his likeness emerged after Sora 2’s launch in late September. He showed gratitude to OpenAI for taking steps to safeguard actors’ rights to control their likenesses.
The partnership aims to enhance protections against unauthorized AI content. The Creative Artists Agency and United Talent Agency had previously criticized OpenAI, citing risks to their clients’ intellectual property.
Last week, OpenAI blocked disrespectful videos of Martin Luther King Jr. at the request of his estate, following similar pressures. Zelda Williams also requested the public refrain from sending her AI-generated clips of her late father, Robin Williams.
Policy Changes
Following tensions post-launch, CEO Sam Altman revised Sora’s policy to give rights holders greater control of their likenesses.
The app now allows individuals to opt-out, reflecting OpenAI’s commitment to respond quickly to concerns from performers.
OpenAI backs the NO FAKES Act, supporting legislation that aims to protect individuals from unauthorized AI-generated representations.
OpenAI is focused on ensuring performers’ rights are respected regarding the misuse of their voices and likenesses. Altman reiterated the company’s dedication to these protections.
In Short:
– AWS outage on Monday disrupted major apps like Fortnite, Snapchat, and affected several global companies.
– UK companies including Lloyds Bank and Vodafone reported issues due to the AWS outage.
Amazon’s AWS experienced a significant outage on Monday, impacting major apps including Fortnite and Snapchat. The disruption affected connectivity for numerous companies globally.AWS reported increased error rates and latencies across multiple services and is attempting to recover quickly.
The outage marks the first significant internet disruption since a previous incident last year that impacted essential technology systems globally. AWS offers on-demand computing and storage services and is vital for many websites and platforms.
Multiple companies reported disruptions, including AI startup Perplexity, cryptocurrency exchange Coinbase, and trading app Robinhood. Perplexity’s CEO confirmed on X that the outages were linked to AWS issues.
Amazon’s shopping site, Prime Video, and Alexa services also faced difficulties, according to Downdetector. Other affected platforms included popular gaming applications like Clash Royale and financial services such as Venmo and Chime.
Uber competitor Lyft’s app was reported down for numerous users in the U.S. Messaging platform Signal also acknowledged connection problems stemming from the AWS outage.
British Companies
In the UK, Lloyds Bank, Bank of Scotland, and telecom services provider Vodafone were notably affected. The HMRC’s website also encountered issues during this outage.
Elon Musk stated that his platform, X, remained operational despite the widespread disruptions.