February 12th – Hive ransomware operators have extorted more than $100 million from thousands of victim organizations. Affected sectors include healthcare, education, finance, and critical infrastructure.
The group first emerged in 2021. In November of 2023, cyber security researchers discovered that a new ransomware group, known as Hunters International, had obtained the source code and infrastructure from Hive in order to launch its own efforts.
Hive ransomware
Experts have some evidence indicating that the hackers who belong to Hunters International are based in Nigeria. But this has not yet been confirmed.
Last week, the firm Chainalysis estimated that ransomware crews siphoned off $1.1 billion from victims during 2023, nearly double what they acquired in the previous year.
Law enforcement actions are believed to have prevented approximately $130 million in ransom payments to Hive. However, as noted previously, the group seems to have offshoots.
At present, the United States government is offering a reward of $10M for information about the identity or location of the group’s leaders. It’s also offering as much as $5M for information leading to the arrest or conviction of anyone involved with Hive. The reward is being offered through the US’ Transnational Organized Crime Rewards Program.
Past Hive coverage
To read more about Hive ransomware and the top ransomware groups in operation right now, please see CyberTalk.org’s past coverage:
- How Hive ransomware Exchange server attacks could damage your business
- Ransomware: Hive, LockBit & BlackCat pounce on one firm’s network…
- 10 most dangerous ransomware groups right now
For more on this story, click here. If you’re a cyber security professional, be sure to register for the premiere cyber security event of the year – CPX. We can’t wait to see you there!