- This topic is empty.
August 25, 2021 at 10:08 am #36948kathi52n448499
US authorities are offering $10 million for info on nation-state cyber-attacks
US authorities are offering up to $10 million in cryptocurrency for information resulting in the identification of state-sponsored cyber-attackers.
Beneath the scheme, which happens under the Department of State’s Rewards for Justice (RFJ) program, payouts will be awarded for the identity or location of anybody who, “while acting at the direction or under the control of a foreign government, participates in malicious cyber activities against US critical infrastructure in violation of the Computer Fraud and Abuse Act (CFAA).
A press release states that violations include threats made during ransomware attacks, unauthorized access to a protected computer with intention to steal sensitive data, and intentionally causing damage without authorization to a protected computer.
The program has setup a reporting channel accessible on the dark web to help protect the safety and security of potential sources.
“Reward payments may include payments in cryptocurrency,” said the Department of State.
Additional information on how to access the Tor-based reporting channel can be found in the release.
In the pipeline
The offer of an incentive comes since the US continues to have cyber-attacks against critical infrastructure that have caused chaos across the nation.
In May this year, a ransomware attack on gas supplier Colonial Pipeline stop services to multiple states on the east coast.
Attackers leveraging DarkSide malware demanded $4.3 million in bitcoin – a sum that has been reportedly paid out by the company.
Security professionals previously told The Daily Swig that in paying ransoms, organizations risk perpetuating a “feedback loop of malicious activity” that “allows the groups to reach a larger degree of sophistication in their next attacks, whether that be via training, new tooling, purchasing credentials, or world market onion recruitment.