Security News > 2023 > March > DoppelPaymer ransomware supsects arrested in Germany and Ukraine
You've almost certainly heard of the ransomware family known as DoppelPaymer, if only because the name itself is a reminder of the double-barrelled blackmail technique used by many contemporary ransomware gangs.
The good news, if you can call it that, is the reason why Europol is writing about the DoppelPaymer ransomware right now.
Even if the cops arrest some, many or all the members of a ransomware gang, that doesn't always stop the ransomware activities, because their infrastructure remains, and can still be used by other gang members or taken over by rivals to continue the extortion activities.
If the cops manage to take down and seize servers that are vital to a ransomware gang, the same dark web anonymity that makes it hard to trace forwards from arrested users to their servers.
In this very case, Europol itself warns that "According to reports, DoppelPaymer has since rebranded 'Grief'." Don't fixate on ransomware alone.
In double-extortion ransomware attacks, for example, the data-stealing stage, where the crooks are plundering your files before scrambling them, is a handy warning that an attack is actively under way.