In an internationally coordinated operation, law-enforcement officials from the Ukraine, US, and South Korea raided homes and vehicles associated with members of the “Clop” ransomware group in Kiev, Ukraine. Several Clop members were arrested in association with money laundering, and the officials seized infrastructure the group has used in ransomware attacks globally. This latest operation follows similar raids on the “NetWalker” and “Egregor” ransomware groups in early 2021; it is unlikely to have a significant impact on the wider ransomware landscape, and only momentarily disrupted Clop’s operations. Regardless, the crackdown highlights a continued international effort to hold ransomware extortion groups to account.
Want To Try Our Digital Risk Protection Tool?
Get Started FreeOther content in this Stream
Weekly Intelligence Summary 17 June 2022
Main story: Attackers seize Microsoft zero-day for malware dissemination, espionage
Weekly Intelligence Summary 29th Apr
Main story: Russian cyber attacks on Ukraine: Where’s the boom?
Weekly Intelligence Summary 22nd Apr
Main story: Karakurt Hacking Team moonlights as Conti side business
Weekly Intelligence Summary 14th Apr
RaidForums takedown sends cybercriminals scrambling
Weekly Intelligence Summary 25th Mar
Maverick extortionist group Lapsus$ goes after big tech
Weekly Intelligence Summary 18th Mar
US executive order pushes for responsible cryptocurrency use
Weekly Intelligence Summary 11th Mar
The Russia-Ukraine war has triggered a resurgence of hacktivism around the world
Weekly Intelligence Summary 4th Mar
The US government has issued an alert about the Iran-linked "MuddyWater" advanced persistent threat group
Weekly Intelligence Summary 25th Feb
Conti ransomware group aims to ascend with new tools, structure
Weekly Intelligence Summary 18th Feb
US DoJ arrests shine light on ease and impact of cryptocurrency laundering