The U.S. is providing as much as $10 million for figuring out or finding leaders within the REvil (Sodinokibi) ransomware operation, together with $5 million resulting in the arrest of associates.
This bounty is being provided as a part of the Division of State’s Transnational Organized Crime Rewards Program (TOCRP), which rewards informants for info that results in the arrest or conviction of people in transnational organized crime teams.
Just like the reward provided for info on DarkSide ransomware members, the quantity rewarded for info relies on the particular person’s position within the REvil/Sodinokibi operation.
The Division of State is providing a reward of as much as $10,000,000 for info resulting in the identification or location of any particular person holding a key management place within the Sodinokibi ransomware variant transnational organized crime group,” the Division of State introduced immediately.
“As well as, the Division is providing a reward provide of as much as $5,000,000 for info resulting in the arrest and/or conviction in any nation of any particular person conspiring to take part in or trying to take part in a Sodinokibi variant ransomware incident.
When ransomware gangs try and evade legislation enforcement, they generally rebrand beneath a brand new title. For instance, the GandCrab operation rebranded as REvil in 2019 after they started receiving an excessive amount of consideration from the media and legislation enforcement.
Equally, different ransomware operations have additionally rebranded up to now, together with:
Because the Division of Assertion announcement states, “Sodinokibi variant ransomware,” this reward will even apply to new ransomware operations created by the REvil gang sooner or later.
At present was additionally crammed with quite a few bulletins concerning the arrest and indictments of a number of REvil gang members. These arrests included an REvil hacker linked to the Kaseya ransomware assault and the seizure of $6 million in cryptocurrency obtained by means of REvil ransom calls for.
To additional disrupt the monetary operations of ransomware teams, the U.S. additionally introduced sanctions towards the Chatex cryptocurrency change for aiding ransomware gangs in laundering and cashing out ransom funds.