Viewing a single comment thread. View all comments

Ffffqqq t1_j5z9xw8 wrote

Reply to comment by DaveDeaborn1967 in FBI has seized website used by notorious ransomware gang by Bananaramas

What does taking down a website actually accomplish?

16

AdventurousSquash t1_j5zbk7o wrote

Depends on what they actually did here and the details in the article are vague. Simply put; If they seized the domain name I’d consider it a minor inconvenience. If they seized the actual server hosting the website they could find artifacts on it that lead them to the perpetrator(s).

44

patrick66 t1_j5zrtx0 wrote

The court order lays out more of the details and basically the people running Hive were morons and had networking, c2, and database servers hosted in Los Angeles and the Netherlands where the fbi and other western law enforcement agencies could actually get physical access to clone the server data and then take control of them so I suspect this will actually break the hive network fairly considerably.

TLDR: if you do cybercrime don’t host your servers in the United States lol

21

DaveDeaborn1967 t1_j6013f5 wrote

What the DOJ wants to do is deny the bad guys resources and their platform for giving orders to their troops. Notice that the DOJ has the ability to unlock systems that have been locked by attackers. This denies the ransom demands.

5

aDrunkWithAgun t1_j5zef2l wrote

Depends on if they can link the site to an owner or them, if not nothing is stopping them from making a new one.

From what I'm tracking ransomware is done outside the USA so if it's a country that Doesn't give a fuck like Russia or NK nothing will happen

3