US State Dept offers $10m for tips on foreign cyber attackers

Published July 15, 2021
Cybersecurity experts say REvil, Russian-linked gang, may have decided to drop out of sight and rebrand under a new name, as it and several other ransomware gangs have done in the past to try to throw off law enforcement.
 — Reuters/File
Cybersecurity experts say REvil, Russian-linked gang, may have decided to drop out of sight and rebrand under a new name, as it and several other ransomware gangs have done in the past to try to throw off law enforcement. — Reuters/File

The US State Department will offer rewards up to $10 million for information leading to the identification of anyone engaged in foreign state-sanctioned malicious cyber activity against critical US infrastructure including ransomware attacks and the White House has launched a task force to coordinate efforts to stem the ransomware scourge.

The Biden administration is also launching the website stopransomware.gov to offer the public resources for countering the threat and building more resilience into networks, a senior administration official told reporters.

Another measure being announced on Thursday to combat the ransomware onslaught is from the Financial Crimes Enforcement Network at the Treasury Department.

It will engage banks, technology firms and others on better anti-money-laundering efforts for cryptocurrency and more rapid tracing of ransomware proceeds, which are paid in virtual currency.

Officials are hoping to seize more extortion payments in ransomware cases, as the FBI did in recouping most of the $4.4m ransom paid by Colonial Pipeline in May.

The rewards are being offered under the State Department's Rewards for Justice programme.

It will offer a tips-reporting mechanism on the dark web to protect sources who might identify cyber attackers and/or their locations, and reward payments may include cryptocurrency, the agency said in a statement.

The administration official would not comment on whether the US government had a hand in Tuesday's online disappearance of REvil, the Russian-linked gang responsible for a July 2 supply chain ransomware attack that crippled well over 1,000 organisations globally by targeting Florida-based software provider Kaseya.

Ransomware scrambles entire networks of data, which criminals unlock when they get paid.

Cybersecurity experts say REvil may have decided to drop out of sight and rebrand under a new name, as it and several other ransomware gangs have done in the past to try to throw off law enforcement.

Another possibility is that Russian President Vladimir Putin actually heeded President Joe Biden's warning of repercussions if he didn't rein in ransomware criminals, who enjoy safe harbour in Russia and allied states.

That seemed improbable, however, given Kremlin spokesman Dmitry Peskov's statement to reporters on Wednesday that he was unaware of REvil sites disappearing.

“I don't know which group disappeared where," he said, adding that the Kremlin deemed cybercrimes unacceptable and meriting of punishment, but analysts say they have seen no evidence of a crackdown by Putin.

Opinion

Editorial

Smog hazard
Updated 05 Nov, 2024

Smog hazard

The catastrophe unfolding in Lahore is a product of authorities’ repeated failure to recognise environmental impact of rapid urbanisation.
Monetary policy
05 Nov, 2024

Monetary policy

IN an aggressive move, the State Bank on Monday reduced its key policy rate by a hefty 250bps to 15pc. This is the...
Cultural power
05 Nov, 2024

Cultural power

AS vital modes of communication, art and culture have the power to overcome social and international barriers....
Disregarding CCI
Updated 04 Nov, 2024

Disregarding CCI

The failure to regularly convene CCI meetings means that the process of democratic decision-making is falling apart.
Defeating TB
04 Nov, 2024

Defeating TB

CONSIDERING the fact that Pakistan has the fifth highest burden of tuberculosis in the world as per the World Health...
Ceasefire charade
Updated 04 Nov, 2024

Ceasefire charade

The US talks of peace, while simultaneously arming and funding their Israeli allies, are doomed to fail, and are little more than a charade.