BlackMatter Ransomware

7th November 2021, Kathmandu

BlackMatter cybercriminal group reported that it is closing down tasks, referring to pressures from law authorization specialists.

Dynamic since July 2021, BlackMatter offers ransomware-as-a-administration (Raas), empowering threat actors and cybercriminal members to convey ransomware.

BlackMatter operators have designated a few basic foundations in the U.S. what’s more, requested payment installments going from $80,000 to $15,000,000 in Bitcoin and Monero.

The Shutdown

Network safety research group VX-Underground, in a tweet, shared the message posted by the BlackMatter group, which guaranteed that they are closing down their ransomware tasks in the following 48 hours.

The BlackMatter pack is associated to be a replacement with the DarkSide ransomware group, liable for the notorious cyberattack on Colonial Pipeline. A few security specialists guaranteed that BlackMatter joined attack strategies of DarkSide, REvil, and LockBit ransomware groups.

What Led to BlackMatter’s Demise?

While the operators behind BlackMatter have not uncovered much with regards to their closure, the online protection local area believed that the new network safety drives might have constrained the gathering to close shop.

As of late, the Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA), and the FBI mutually delivered a network protection warning with regards to the notorious BlackMatter ransomware group, with data on its strategies, methods, and techniques (TTPs).

The Biden Administration as of late facilitated a 30-country Counter-Ransomware Initiative meeting to address the developing ransomware scene.

Would BlackMatter Return?

It’s normal for cybercriminal groups to stop activities and return with various names and strategies. A couple of months prior, DarkSide group declared its closure; notwithstanding, it later returned as BlackMatter.

The Last Victim

Homestead administrations supplier NEW Cooperative was the last casualty of BlackMatter ransomware. The gathering allegedly compromised and tainted NEW’s organization frameworks and requested a payoff of $5.9 million for rebuilding.

Prior, BlackMatter expressed that they wouldn’t attack basic frameworks like medical care offices, the safeguard business, thermal energy stations, water therapy offices, the oil and gas industry, non-benefit associations, and government organizations.

Be that as it may, it designated basic firms, making extreme harm to the customer economy.


Please enter your comment!
Please enter your name here