GRI

CISA and FBI Release Advisory on ALPHV Blackcat Affiliates

News Cybersecurity English Guidance
Date: 19th Dec, 2023 Source: Cybersecurity and Infrastructure Security Agency Country: USA Original Source

Brief

Summary:

The Cybersecurity Advisory (CSA) #StopRansomware: ALPHV Blackcat was released by CISA and the FBI to share the tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) of ALPHV Blackcat ransomware affiliates. The advisory provides updates on the FBI's efforts to address the ransomware and data extortion operations of the affiliates, which have compromised over 1000 entities worldwide, including over half in the United States. The joint CSA warns critical infrastructure organizations to review and implement mitigations to reduce the likelihood and impact of ALPHV Blackcat ransomware incidents.

Today, CISA and the Federal Bureau of Investigation (FBI) released a joint Cybersecurity Advisory (CSA), #StopRansomware: ALPHV Blackcat, to disseminate known ALPHV Blackcat affiliates’ tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) identified through FBI investigations as recently as Dec. 6, 2023. The advisory also provides updates to the FBI FLASH BlackCat/ALPHV Ransomware Indicators of Compromise released April 19, 2022.

ALPHV Blackcat affiliates have extensive networks and experience with ransomware and data extortion operations. FBI investigations, as of September 2023, place the number of compromised entities at over 1000—over half of which are in the United States and approximately 250 outside the United States.

CISA and FBI encourage critical infrastructure organizations to review and implement the mitigations provided in the joint CSA to reduce the likelihood and impact of ALPHV Blackcat ransomware and data extortion incidents. For more information, see CISA’s #StopRansomware webpage, which includes the updated #StopRansomware Guide.

Highlights content goes here...

Summary

The Cybersecurity Advisory (CSA) #StopRansomware: ALPHV Blackcat, released jointly by the Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI), provides an in-depth overview of the tactics, techniques, and procedures (TTPs) used by ALPHV Blackcat affiliates, a group of ransomware and data extortion operators. The advisory aims to disseminate known indicators of compromise (IOCs) and update the FBI’s previously released FLASH BlackCat/ALPHV Ransomware Indicators of Compromise from April 19, 2022.

ALPHV Blackcat affiliates are experienced operators with extensive networks, having compromised over 1000 entities as of September 2023, with more than half located in the United States and approximately 250 outside the country. The compromised entities include critical infrastructure organizations, which are advised to review and implement the mitigations provided in the joint CSA to reduce the likelihood and impact of ALPHV Blackcat ransomware and data extortion incidents.

The advisory provides essential information for critical infrastructure organizations, encouraging them to take proactive measures to prevent and respond to ransomware attacks. Additionally, CISA’s #StopRansomware webpage, which includes the updated #StopRansomware Guide, offers further resources for organizations to enhance their cybersecurity posture.

Overall, the joint CSA aims to raise awareness about the evolving threat landscape of ransomware and data extortion operations, providing critical insights and guidance to help organizations protect themselves against these types of attacks.

Cybersecurity and Infrastructure Security Agency

Quick Insight
RADA.AI
RADA.AI
Hello! I'm RADA.AI - Regulatory Analysis and Decision Assistance. Your Intelligent guide for compliance and decision-making. How can i assist you today?
Suggested
Related Documents
Reviewed supervisors overall applied the EBA’s recommendations on tax integrity and dividend arbitrage trading schemes, the EBA Report finds
Date: 6th Feb, 2025 Source: European Banking Authority (EBA) Country: European Union
News Tax & Compliance Guidance
CH403260 – Calculating penalties: special reduction: when to consider Special Reduction
Date: 6th Feb, 2025 Source: Her Majesty’s Revenue and Customs (HMRC) Country: United Kingdom
News Tax & Compliance Guidance
VAT Partial Exemption Guidance
Date: 6th Feb, 2025 Source: Her Majesty’s Revenue and Customs (HMRC) Country: United Kingdom
News Tax & Compliance Guidance

Form successfully submitted. One of our GRI rep will contact you shortly

Thanking You!

Click here

Enter your Email

Enter your registered username/email id.

Enter your Email

Enter your email id below to signup.

Enter your Email

Enter your email id below to signup.
Individual Plan
  • Designed for Growing Compliance Teams
$125 / month OR $1250 / year
Features
  • • Coverage for 20 jurisdictions
  • • Monitoring from 500+ regulatory authorities
  • • AI compliance summaries
  • • RaDa.ai : Single-Role
Best for: Researchers, Legal professionals, Academics
Subscribe Now
Enterprise Plan
  • Perfect for Global Enterprises
Contact for Pricing
Features
  • • Custom jurisdictional coverage
  • • Custom monitoring of regulatory authorities
  • • RaDa.ai : Customizable multi-role
  • • Custom reporting and dashboard capabilities
  • • API access for seamless integration
Best for: Law Firms, Corporations, Government Bodies
Contact Sales