The U.S. Department of Homeland Security revealed that the cybercrime gangs behind Royal and BlackSuit ransomware have compromised over 450 U.S. organizations and collected more than $370 million before being dismantled. The groups, believed to be linked and rebranding as Chaos ransomware, used sophisticated double-extortion tactics and targeted sectors like healthcare, energy, and government. #RoyalRansomware #BlackSuit #ChaosRansomware #OperationCheckmate
Keypoints
- The Royal and BlackSuit ransomware gangs targeted more than 450 U.S. organizations since 2022.
- They collected over $370 million in ransom payments through double-extortion tactics.
- Law enforcement successfully seized BlackSuitβs dark web extortion domains in Operation Checkmate.
- The groups have a history of rebranding, now possibly operating as Chaos ransomware.
- The ransomware groups used both their own encryption tools and previously employed encryptors from other groups.