Skip to content Skip to footer

BlackCat Ransomware Group Disappears Amid Exit Scam Speculations

Recently, the threat actors responsible for the BlackCat have shut down their darknet website, which has led to speculations of an exit scam. A bogus enforcement seizure banner was uploaded on the website, which security researchers believe was a cover-up. According to security researchers, the BlackCat was not seized, and they are ex-scamming their affiliates. This has raised concerns that the group might resurface under a new brand.

The group's apparent demise and abandonment of its infrastructure come as research group VX-Underground reported that the LockBit operation no longer supports Lockbit Red (aka Lockbit 2.0) and StealBit, a custom tool used by the for data exfiltration. LockBit has also tried to save face by moving some of its activities to a new dark portal after a coordinated enforcement operation took down its infrastructure last month after a months-long investigation.

Moreover, Trend Micro revealed that the family known as RA World (formerly RA Group) has successfully infiltrated healthcare, finance, and insurance companies in the U.S., Germany, India, Taiwan, and other countries since emerging in April 2023. The group's attacks involve multi-stage components designed to ensure maximum impact and success in their operations.

In conclusion, the recent events surrounding the BlackCat , LockBit, and RA World highlight the increasing threat of ransomware attacks and the need for organizations to protect their systems and data.

Leave a comment

Newsletter Signup
Address

The Grid —
The Matrix Has Me
Big Bear Lake, CA 92315

01010011 01111001 01110011 01110100 01100101 01101101 00100000
01000110 01100001 01101001 01101100 01110101 01110010 01100101

Kid, don't threaten me. There are worse things than death, and uh, I can do all of them.The Plague

Deitasoft © 2024. All Rights Reserved.