Security News > 2021 > January > US charges NetWalker ransomware affiliate, seizes ransom payments
The U.S. Justice Department announced today the disruption of the Netwalker ransomware operation and the indictment of a Canadian national for alleged involvement in the file-encrypting extortion attacks.
Earlier today, BleepingComputer reported that law enforcement in the U.S. and Bulgaria seized Netwalker sites on the dark web used for leaking data from non-paying victims and for negotiating payments for data decryption.
Despite starting in late 2019, Netwalker ransomware operation caused financial losses of tens of millions of US dollars.
Apart from seizing the dark web sites, the DOJ says that Canadian national Sebastien Vachon-Desjardins of Gatineau was charged in relation to Netwalker ransomware attacks.
On January 10, law enforcement was able to seize a little over $450,000 in cryptocurrency that represented ransom payments from three distinct Netwalker victims.
Incident responders from Crypsis, a Palo Alto Networks company, told BleepingComputer that in the case of three U.S. organizations Netwalker asked for cryptocurrency worth $108,000 from a public entity, a little over $2 million from a utilities organization, and $1 million from a manufacturing business.
News URL
Related news
- Ransomware negotiator weighs in on the extortion payment debate with El Reg (source)
- New Fog ransomware targets US education sector via breached VPNs (source)
- Cyber insurance isn’t the answer for ransom payments (source)
- Panera Bread likely paid a ransom in March ransomware attack (source)
- Ransomware disrupts Indonesia’s national data centre, LockBit gang claims US Federal Reserve breach (source)
- UK and US cops band together to tackle Qilin's ransomware shakedowns (source)