{"id":5501,"date":"2021-11-03T14:55:10","date_gmt":"2021-11-03T05:55:10","guid":{"rendered":"https:\/\/cyberenso.jp\/?p=5501"},"modified":"2021-12-06T14:58:20","modified_gmt":"2021-12-06T05:58:20","slug":"blackmatter-ransomware-gang-announce-the-shutdown-of-operations-due-to-pressure-from-authorities","status":"publish","type":"post","link":"https:\/\/cyberenso.jp\/en\/blackmatter-ransomware-gang-announce-the-shutdown-of-operations-due-to-pressure-from-authorities\/","title":{"rendered":"BlackMatter ransomware gang announce the shutdown of operations due to pressure from authorities"},"content":{"rendered":"\t\t<div data-elementor-type=\"wp-post\" data-elementor-id=\"5501\" class=\"elementor elementor-5501\" data-elementor-post-type=\"post\">\n\t\t\t\t\t\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-f93bb2d elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"f93bb2d\" data-element_type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-b59411f\" data-id=\"b59411f\" data-element_type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t\t\t<div class=\"elementor-element elementor-element-86e9979 elementor-widget elementor-widget-text-editor\" data-id=\"86e9979\" data-element_type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<p>On Monday 1st of November 2021, the threat actors behind the BlackMatter Ransomware released an announcement on their ransomware-as-a-service (RaaS) website which is used by their affiliates to communicate with the core ransomware operators and receive support during operations. The announcement stated that the operation was going to shut down after 48 hours of the release of the announcement.<\/p><p>Due to certain unsolvable circumstances associated with pressure from the authorities (part of the team is no longer available, after the latest news) &#8211; project is closed.<\/p><p>After 48 hours the entire infrastructure will be turned off, allowing:<\/p><ul><li>Issue mail to companies for further communication<\/li><li>Get decryptor. For this write &#8220;give a decryptor&#8221; inside the company chat, where necessary<\/li><\/ul><p>We wish you all success, we were glad to work.&#8221; \u2013 BlackMatter announcement.<\/p><p>Currently no one is sure on which members of the core ransomware team are missing but there is a belief that it could be linked to a recent international law enforcement operation arresting twelve individuals linked to 1,800 ransomware attacks in 71 countries.<\/p><p>In terms of current victims of BlackMatter, the post states that the decryptors will be released to the affiliates so therefore there is a possibility that affiliates might look to continue extorting current victims without the support of the core ransomware team.<\/p>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"<p>On Monday 1st of November 2021, the threat actors behind the BlackMatter Ransomware released an announcement on their ransomware-as-a-service (RaaS) website which is used by their affiliates to communicate with the core ransomware operators and receive support during operations. The announcement stated that the operation was going to shut down after 48 hours of the release of the announcement. Due<span class=\"excerpt-hellip\"> [\u2026]<\/span><\/p>\n","protected":false},"author":1,"featured_media":5506,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6,10,12,9,2],"tags":[],"class_list":["post-5501","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-latest_news","category-latest_vulnerabilities","category-read_article","category-ransomware_criminals","category-ce_news"],"acf":[],"jetpack_featured_media_url":"https:\/\/i0.wp.com\/cyberenso.jp\/wp-content\/uploads\/2021\/12\/Picture1-1.jpg?fit=1375%2C917&ssl=1","_links":{"self":[{"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/posts\/5501"}],"collection":[{"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/comments?post=5501"}],"version-history":[{"count":6,"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/posts\/5501\/revisions"}],"predecessor-version":[{"id":5509,"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/posts\/5501\/revisions\/5509"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/media\/5506"}],"wp:attachment":[{"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/media?parent=5501"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/categories?post=5501"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/tags?post=5501"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}