The FBI and law-enforcement partners kept secret the “Sodinokibi” (aka REvil) ransomware decryption key for almost three weeks after the Kaseya ransomware supply-chain attack of mid-2021. They cited an intention to prevent the Sodinokibi group’s discovery of a takedown operation; media outlets argue that an earlier release of the decryption key could have saved many victims time and money in their data recovery. Leading up to its contentious decision to withhold the key, the FBI likely weighed the value of collecting intelligence about Sodinokibi―and disrupting the group―against the needs of some victims. The media has called the decision unjust in hindsight, but without knowing the law-enforcement agencies’ full intentions, the best choice of action remains elusive.
Other content in this Stream
The fallout of the recent Optus breach got me thinking about a common occurrence: seller’s remorse… Most of us have ...
Digital Shadows CISO Rick Holland alongside Michael Farnum CTO at Set Solutions and Greg Porterfield, Senior Security Consultant at Set Solutions give you the latest in threat intelligence.
If you have ever watched a movie or television show that depicted hacking, you have probably heard the phrase, “I’m ...
Ransomware in 2023 is almost certainly going to continue to become more organized, with newer groups entering the scene. Stay-up-to-date.
Digital Shadows are no strangers to witnessing exit scams. Read more about the latest tactics being used in carding forums to defraud users.
Cybercriminals are a hardy and adaptable breed. Our Photon Research Team keeps an eye on the latest activities as we enter the final quarter of 2022 in our latest blog.
Digital Shadows consistently monitors ransomware groups and cybercriminal forums, tracking their victims behavior, and related chatter. Read more.
Blimey, August already? This year has absolutely flown by and shows no signs of slowing down. This month has been ...
In this month's Vulnerability Intelligence Roundup, discover how Digital Shadow's Vulnerability Intelligence can help save time when analyzing these types of vulnerabilities.
ShadowTalk host Nicole alongside CISO Rick Holland bring you the latest in threat intelligence.
The Photon Research Team provides insights into Chinese hacktivism’s responses to the growing tensions between the People’s Republic of China (PRC) and Taiwan.
The cyber risk facing the manufacturing sector is likely greater at this point than ever before. Read our latest blog for how the industry is being impacted and next steps.
