Security News > 2021 > November > FBI seized $2.2M from affiliate of REvil, Gandcrab ransomware gangs
The FBI seized $2.2 million in August from a well-known REvil and GandCrab ransomware affiliate, according to court documents seen by BleepingComputer.
In a complaint unsealed today, the FBI seized 39.89138522 bitcoins worth approximately $2.2 million from an Exodus wallet on August 3rd, 2021.
In a REvil report by McAfee, researchers followed the money trail for a well-known threat actor known as 'Lalartu,' an affiliate for the GandCrab and REvil ransomware operations.
In November, the Department of Justice announced that the FBI seized $6 million in ransoms paid to the REvil ransomware gang.
It is unclear if this $2.2 million is part of the previously announced number or additional ransoms seized by the FBI. Law enforcement's continued strategy of disrupting the economics and affiliate systems of ransomware operations is paying off.
The arrests and seizure of infrastructure are also spooking ransomware gangs into shutting down their operations, including REvil in October and BlackMatter in July.
News URL
Related news
- FBI: BlackSuit ransomware made over $500 million in ransom demands (source)
- FBI: BlackSuit ransomware behind over $500 million in ransom demands (source)
- FBI and CISA Warn of BlackSuit Ransomware That Demands Up to $500 Million (source)
- FBI disrupts the Dispossessor ransomware operation, seizes servers (source)
- FBI Shuts Down Dispossessor Ransomware Group's Servers Across U.S., U.K., and Germany (source)
- FBI: RansomHub ransomware breached 210 victims since February (source)