FBI shares technical details for Hive ransomware

2021-08-26 18:28

The Federal Bureau of Investigation has released some technical details and indicators of compromise associated with Hive ransomware attacks.

In a rare occurrence, the FBI has included the link to the leak site where the ransomware gang publishes data stolen from companies that did not pay.

Hive ransomware relies on a diverse set of tactics, techniques, and procedures, which makes it difficult for organizations to defend against its attacks, the FBI says.

Before deploying the encryption routine, the Hive ransomware steals files they deem valuable, to pressure the victim to pay the ransom under the threat of a data leak.

The FBI says that some Hive ransomware victims reported being contacted by the attacker asking them to pay the ransom in exchange for the stolen files.

Regardless of ransomware victim's decision to pay or not, the FBI urges companies to report ransomware incidents to the local field office to help investigators with critical information to track the attackers, "Hold them accountable under US law, and prevent future attacks."

News URL

https://www.bleepingcomputer.com/news/security/fbi-shares-technical-details-for-hive-ransomware/

#FBI #ransomware