US authorities, together with Bulgarian law enforcement, conducted an operation aimed at disrupting the NetWalker ransomware.
\n
\n
Department of Justice Launches Global Action Against NetWalker Ransomwarehttps://t.co/T18MDI8v1x pic.twitter.com/1L1gcIrsCK
\n
— Justice Department (@TheJusticeDept) January 27, 2021
\n
\n
As stated by the US Department of Justice, NetWalker operates under a Ransomware-as-a-service (RaaS) model — developers provide access to the malware to affiliates who attack victims.
\n
During the investigation, authorities charged a Canadian national. Thanks to attacks using NetWalker he received at least $27.6 million. Since April 2020 the defendant was linked to at least 91 NetWalker attacks, according to investigators.
\n
Authorities also seized $454,530 in cryptocurrency. This amount comprises ransoms paid by three NetWalker victims.
\n
Additionally, Bulgarian authorities seized a hidden resource on the dark web that NetWalker criminals used to contact victims.
\n
According to Chainalysis, which aided authorities in the investigation, the hackers received more than $46 million in ransom from their numerous victims.
\n
\n
We’re proud to announce that Chainalysis played a role in today’s disruption of the Netwalker ransomware organization and arrest of a key affiliate. Get the details and see the blockchain analysis here! https://t.co/mrJNiqOY7V
\n
— Chainalysis (@chainalysis) January 27, 2021
\n
\n
NetWalker attacks affected no fewer than 305 victims across 27 countries, including 203 residents of the United States. Among them were private companies, government agencies, hospitals and educational institutions.
\n
Data: Chainalysis
\n
NetWalker hackers attacked the University of California and National Migration Service of Argentina.
\n
In 2020, Netwalker was among the most widespread ransomware.
\n
Subscribe to ForkLog news on Telegram: ForkLog Feed — the full news feed, ForkLog — the most important news and polls.