December 11, 2023 at 10:17AM
A Dark Web leak site operated by the ransomware group APLHV/BlackCat was taken offline by law enforcement action on Dec. 7, confirmed by threat intelligence experts. BlackCat/ALPHV has listed over 650 companies on its site since November 2021. Law enforcement scrutiny has increased due to cyberattacks by BlackCat/ALPHV affiliates like Scattered Spider. The FBI and CISA issued a advisory about Scattered Spider’s use of BlackCat/ALPHV ransomware.
The meeting notes convey a significant development regarding the takedown of a Dark Web leak site affiliated with the ransomware group APLHV/BlackCat. It has been confirmed by threat intelligence experts and RedSense Intelligence that the site was taken down by law enforcement on Dec. 7. However, Dark Reading has not been able to independently verify this information.
Notably, BlackCat/ALPHV has listed over 650 companies on its leak site since its emergence in November 2021. There is also scrutiny on law enforcement for not taking more aggressive action against BlackCat/ALPHV affiliates, such as Scattered Spider, which is known for cyberattacks against prominent entities like MGM Resorts and Caesars.
In addition, the FBI and CISA released a joint advisory on Nov. 16 about Scattered Spider, acknowledging the group’s use of BlackCat/ALPHV ransomware for their cybercrimes. The situation appears to be ongoing, and the story is developing.