State Department affords $10 million for information on ransomware gang

The State Department is providing a reward of as much as $10 million for data linking the CL0p ransomware gang that’s concentrating on U.S. networks for a international authorities.

The U.S. authorities is attempting to find the identities behind the cybercriminal gang whose latest victims embrace the Energy Department and state authorities networks.

The State Department’s Rewards for Justice program tweeted Friday that it’s ready to supply the multimillion-dollar reward for data revealing the situation or id of individuals engaged in cyberattacks in opposition to U.S. networks on the behest of a international authorities.

“Do you have info linking CL0P Ransomware Gang or any other malicious cyber actors targeting U.S. critical infrastructure to a foreign government? Send us a tip,” the Rewards for Justice account tweeted. “You could be eligible for a reward.”

CL0p is affiliated with cybercriminals who’re believed to function inside a former Soviet Union nation, however exactly the place is unknown.

In 2021, the Health and Human Services Department revealed an analyst word connecting CL0p to the FIN11 cyber menace group. The analyst word from HHS’ Health Sector Cybersecurity Coordination Center stated it discovered from cybersecurity agency Mandiant that FIN11 possible works from someplace inside the Commonwealth of Independent States, which incorporates former Soviet Union international locations.

“This assessment is based on FIN11’s avoidance of systems utilizing CIS-country keyboard layouts and the use of Russian-language file metadata,” the analyst word stated in 2021. “Researchers believe that FIN11 outsources many of their services via underground, criminal communities.”

The CL0p gang, scrutinized by HHS two years in the past, subsequently exploited Progress Software’s MOVEit managed file switch answer in May, in line with a joint cybersecurity advisory from the FBI and the Cybersecurity and Infrastructure Security Agency.

CISA Director Jen Easterly stated final week that the cyberattackers’ actions appeared largely opportunistic, and she or he downplayed any fears that the hacking marketing campaign represented a systemic danger to U.S. nationwide safety.

Congress additionally desires solutions from the Biden administration about exactly what it is aware of concerning the cyber breaches afflicting the Energy Department and different U.S. networks.

The House Energy and Commerce Committee’s bipartisan management stated Friday they need the Biden administration, together with the Energy Department, to transient them on the cyberattacks.