December 3, 2023

The AvosLocker ransomware operators provided free decryptor after learning they encrypted a US government agency last month

After learning that the victim was a government agency, they provided a decryptor for free. While they provided a decryptor to the police department, the ransomware operation refused to provide a list of stolen files or how they breached the department’s network. 

A member of the AvosLocker operation told that they have no policy on who they target but usually avoid encrypting government entities and hospitals.

“You should note, however, that sometimes an affiliate will lock a network without having us review it first,”.

When asked if they purposely avoid targeting government agencies out of fear of law enforcement, they said it’s more because “tax payer money’s generally hard to get.”

Advertisements

International law enforcement operations have resulted in numerous indictments or arrests of ransomware members and money launderers over the past year. These arrests include members of the  REvil, Egregor, Netwalker, and Clop ransomware gangs.

This increased pressure is shown to have a good effect, leading to numerous ransomware operations shutting down, including the  DarkSide, BlackMatter, Avaddon, and  REvil  operations. Many of these ransomware gangs just rebrand as a new operation, thinking it will help them evade law enforcement.

Tags:

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

You may have missed

TheCyberThrone CyberSecurity Newsletter Top 5 Articles – November, 2023

December 2, 2023

Staples affected by a Cyber Attack

December 2, 2023

CISA KEV Update Part I – December 2023

December 1, 2023 2

Dollar Tree Affected by a Third Party Breach

December 1, 2023

Apple Patches iOS zerodays – CVE-2023-42916 and CVE-2023-42917

December 1, 2023

TheCyberThrone Security Week In Review – November 25, 2023

November 30, 2023
%d bloggers like this: