Russia Raids Ransomware Group REvil, Seizes $7 Million

Russian domestic intelligence agency, Federal Security Service (FSB), has announced that it has put an end to the ransomware gang, REvil.

The Russia-based criminal gang has been at the center of some of the most prominent ransomware attacks in recent years.

FSB Arrests 14 People, Seizes Almost $7 Million Worth in Cryptos

In a large-scale crackdown, FSB raided 25 residences tied to the gang. The agency arrested 14 members and seized  $6.8 million worth of different currencies, including crypto assets. It also seized crypto wallets, computer equipment, and luxury cars. 

REvil has been at the center of several major ransomware attacks, especially against US companies. In May 2021, the gang hacked Colonial Pipelines, forcing it to pay almost $5 million in Bitcoin for ransom. The hackers were able to take the pipeline offline, leading to a major gas shortage across the country.

Though the authorities were able to recover most of the ransom, the attack represented how notorious the organization had become.

Some REvil Cyberattacks

Beyond that, REvil was responsible for over ten major cyberattacks in 2021. In March alone, it attacked Harris Federation and Acer, leading to confidential data leaks. 

In May of the same year, it attacked Brazilian meat processing company, JBS SA, forcing it to pay an $11 million ransom.

Its largest ransomware attack was in July when it affected thousands of people and businesses in at least 17 countries. The gang collected a ransom of $70 million worth of Bitcoin at that time.

The US Pressured Russia to act

The widespread impact of the cyberattacks by the gang and other similar groups led to the US President pressuring Russian authorities to act.

While Russia has been slow to act, it appears that it has finally heeded US calls. According to FSB, this crackdown was at the request of US authorities.

This will mark the first time in years that US and Russian intelligence will collaborate on a mission like this.

Russia’s motive for doing it now remains unknown; however, it should be noted that the global effects of cyber attacks have also led to more global security collaborations. 

Authorities in Kuwait, South Korea, and Romania arrested suspected REvil members last year. With this Russian-US partnership, the momentum is to curb cyber hacks and limit safe havens for cybercriminals.