International law enforcement agencies, including German and Ukrainian police, Europol, and the FBI, have arrested suspected core members of the notorious DoppelPaymer ransomware operation. The group has been blamed for numerous large-scale attacks since 2019. Last month, German police raided the house of a German national believed to have played a major role in the group, while Ukrainian police interrogated a Ukrainian national who is also believed to be a core member of the Russia-linked ransomware operation. The authorities are analyzing the equipment seized during the raids to determine the suspects’ exact role and links to other accomplices.
German police have also released arrest warrants for three additional suspects based in Russia: Igor Turashev, Igor Garshin, and Irina Zemlianikina. Turashev, who is also wanted by the FBI for his alleged role in the sanctioned Evil Corp hacking group, is accused of having committed acts of blackmail and computer sabotage in particularly serious cases. DoppelPaymer has targeted at least 601 companies worldwide, including a total of 37 organizations in Germany. Victims in the United States paid out at least €40 million (about $42.5M) to the gang between May 2019 and March 2021.
One of the most serious attacks carried out by the gang targeted University Hospital in Düsseldorf. The subsequent failure of critical systems caused delays in emergency treatment, including the death of a 78-year-old patient, possibly the first death caused by ransomware. Other victims include Visser, a parts manufacturer for Tesla and SpaceX; Kimchuk, a medical and military electronics maker; and manufacturing giant Foxconn.
DopplePaymer ransomware, which was the subject of an FBI warning in December 2020, is believed to be the successor to BitPaymer, a similar variant of ransomware linked to Evil Corp. According to reports, DoppelPaymer has since rebranded to “Grief.” The arrests of the suspected core members of the group are a significant blow to the ransomware operation and a victory for international law enforcement agencies.
In a major breakthrough in the fight against cybercrime, the police have successfully apprehended the notorious DoppelPaymer ransomware gang, causing ripples throughout the cyber world. The gang is believed to be responsible for numerous attacks on high-profile targets, including hospitals, government institutions, and educational organizations.
The DoppelPaymer group is known for its advanced hacking techniques and its use of ransomware as a means of extorting money from their victims. Ransomware is a type of malicious software that encrypts files on an infected computer or network, rendering them unusable. The hackers then demand payment in exchange for restoring the encrypted data. The group’s attacks have caused millions of dollars in damages and disrupted the operations of many organizations.
According to reports, the police arrested several members of the DoppelPaymer gang after a months-long investigation. This is a significant development in the fight against cybercrime, as ransomware attacks have become increasingly widespread and sophisticated in recent years. The authorities hope that this action will send a message to the cybercriminals that their actions will not be tolerated, and that they will be brought to justice.
The DoppelPaymer gang is not the only group engaged in ransomware attacks, however. There are many other criminal organizations that continue to carry out similar attacks, causing untold damage to individuals and businesses. As more and more of our lives move online, the threat of cybercrime will only continue to grow.
It is therefore vital that we take cybersecurity seriously and take steps to protect ourselves and our organizations. This includes using strong passwords, running up-to-date antivirus software, and backing up important data regularly to protect it from ransomware attacks.
In conclusion, the arrest of the DoppelPaymer ransomware gang is a significant victory in the fight against cybercrime. However, the threat of ransomware and other forms of cybercrime remains ever-present, and we must remain vigilant and take proactive steps to protect ourselves and our organizations.