August 13, 2024 at 02:17PM
The FBI has dismantled the global cyber infrastructure of Radar/Dispossessor, a ransomware gang originally linked to LockBit. The group targeted small-to-mid-sized businesses across diverse sectors and utilized double extortion tactics. While this takedown is a significant win, arrests and public exposure of the gang’s leaders are needed. Organizations are urged to prioritize software patching and password security to defend against ransomware threats.
The FBI recently shut down multiple servers associated with the Radar/Dispossessor ransomware operations, which had evolved from piggybacking on the LockBit ransomware gang to becoming its own impactful cybercriminal force. The group, led by an individual with the moniker “Brain”, targeted a wide range of organizations globally, focusing particularly on small-to-mid-sized businesses and various sectors such as production, development, education, healthcare, financial services, and transportation.
The FBI collaborated with multiple international law enforcement agencies and organizations to dismantle Radar/Dispossessor’s global computer infrastructure, including servers and criminal domains in the US, UK, and Germany. The group was known for employing a double extortion tactic, where they not only encrypted victim systems but also exfiltrated critical data for ransom. To increase the pressure on victims, they proactively contacted company employees and set a countdown for the public release of stolen data if organizations didn’t pay the ransom.
It is important for organizations to prioritize patching software, protecting passwords, and implementing strong password hygiene to mitigate the risk of ransomware attacks. While the shutdown of cybercriminal infrastructure is a positive development, security experts emphasize the need for ongoing vigilance to defend against evolving threats.
This summary provides an overview of the key details from the meeting notes regarding the FBI’s takedown of the Radar/Dispossessor ransomware operations and the security implications for organizations.