US State Dept offers $10m for tips on foreign cyber attackers

Published July 15, 2021
Cybersecurity experts say REvil, Russian-linked gang, may have decided to drop out of sight and rebrand under a new name, as it and several other ransomware gangs have done in the past to try to throw off law enforcement.
 — Reuters/File
Cybersecurity experts say REvil, Russian-linked gang, may have decided to drop out of sight and rebrand under a new name, as it and several other ransomware gangs have done in the past to try to throw off law enforcement. — Reuters/File

The US State Department will offer rewards up to $10 million for information leading to the identification of anyone engaged in foreign state-sanctioned malicious cyber activity against critical US infrastructure including ransomware attacks and the White House has launched a task force to coordinate efforts to stem the ransomware scourge.

The Biden administration is also launching the website stopransomware.gov to offer the public resources for countering the threat and building more resilience into networks, a senior administration official told reporters.

Another measure being announced on Thursday to combat the ransomware onslaught is from the Financial Crimes Enforcement Network at the Treasury Department.

It will engage banks, technology firms and others on better anti-money-laundering efforts for cryptocurrency and more rapid tracing of ransomware proceeds, which are paid in virtual currency.

Officials are hoping to seize more extortion payments in ransomware cases, as the FBI did in recouping most of the $4.4m ransom paid by Colonial Pipeline in May.

The rewards are being offered under the State Department's Rewards for Justice programme.

It will offer a tips-reporting mechanism on the dark web to protect sources who might identify cyber attackers and/or their locations, and reward payments may include cryptocurrency, the agency said in a statement.

The administration official would not comment on whether the US government had a hand in Tuesday's online disappearance of REvil, the Russian-linked gang responsible for a July 2 supply chain ransomware attack that crippled well over 1,000 organisations globally by targeting Florida-based software provider Kaseya.

Ransomware scrambles entire networks of data, which criminals unlock when they get paid.

Cybersecurity experts say REvil may have decided to drop out of sight and rebrand under a new name, as it and several other ransomware gangs have done in the past to try to throw off law enforcement.

Another possibility is that Russian President Vladimir Putin actually heeded President Joe Biden's warning of repercussions if he didn't rein in ransomware criminals, who enjoy safe harbour in Russia and allied states.

That seemed improbable, however, given Kremlin spokesman Dmitry Peskov's statement to reporters on Wednesday that he was unaware of REvil sites disappearing.

“I don't know which group disappeared where," he said, adding that the Kremlin deemed cybercrimes unacceptable and meriting of punishment, but analysts say they have seen no evidence of a crackdown by Putin.

Opinion

Editorial

Kurram atrocity
Updated 22 Nov, 2024

Kurram atrocity

It would be a monumental mistake for the state to continue ignoring the violence in Kurram.
Persistent grip
22 Nov, 2024

Persistent grip

PAKISTAN has now registered 50 polio cases this year. We all saw it coming and yet there was nothing we could do to...
Green transport
22 Nov, 2024

Green transport

THE government has taken a commendable step by announcing a New Energy Vehicle policy aiming to ensure that by 2030,...
Military option
Updated 21 Nov, 2024

Military option

While restoring peace is essential, addressing Balochistan’s socioeconomic deprivation is equally important.
HIV/AIDS disaster
21 Nov, 2024

HIV/AIDS disaster

A TORTUROUS sense of déjà vu is attached to the latest health fiasco at Multan’s Nishtar Hospital. The largest...
Dubious pardon
21 Nov, 2024

Dubious pardon

IT is disturbing how a crime as grave as custodial death has culminated in an out-of-court ‘settlement’. The...