The Clop ransomware threat group released the details of new victims on their leak site after taking a week off. Law enforcement in Ukraine arrested six members of the threat group with the help of the Korean National Police Agency and the USA, which was hoped by many to signal a disruption of the threat. The Ukrainian Police described the arrests as a significant blow to the group’s operations stating “together, law enforcement has managed to shut down the infrastructure from which the virus spreads and block channels for legalizing criminally acquired cryptocurrencies.” It only took about a week for these arrests to stop phasing the group as they posted the data of at least two new victims on their website. Security firm Intel 471 stated when the arrests were made that most of those arrests were part of the money laundering side of the group and that the core actors that develop and deploy the ransomware were not part of the arrests.
By Akshay Rohatgi and Randy Pargman About this Student Research Project Binary Defense’s mission is