Kimberly Goody of Virginia-based cybersecurity firm Mandiant says while the recent actions targeting REvil-affiliated actors are “significant,” some countries may still “take a position of strategic tolerance allowing ransomware operations to continue without interference as long as they don’t target domestic interests.”
Two charged for extorting millions through cyberattacks affecting hundreds of companies
→
"Back in October of 2020, there was this joint alert from multiple U.S. government entities that specifically highlighted this heightened threat of ransomware attacks to the health care sector — we firmly believe that this alert was at least partially in response to FIN12 operations," Ms. Goody said.
Russian-speaking group 'FIN12' blamed for ransomware attacks on hospitals
→