Authorities seize servers of black suit ransomware gang

German prosecutors say a joint US-European operation has seized infrastructure belonging to the Blacksuit Ransomware Gang, the infamous hacking group that has in recent years condemned several major cyberattacks.

in New Statement This week, German officials said they seized gang servers and systems as part of the July 24 operation. Authorities said they have secured “significant amounts of data” that will be used to identify those responsible for the attack.

Authorities said they switched servers and effectively blocked ransomware malware. According to the statement, the Blacksuit had a total of 184 casualties worldwide, of which several were in Germany.

At the time of publication, the Dark Web BlackSuit leak site, which was used by victims to make harm to pay the ransom, was no longer loaded. Currently, the site has a seizure notification saying it has been removed in “Coordinated International Law Enforcement Investigation.”

German officials say the operation proceeded with the help of Ice’s Homeland Security Investigation Forces and Europol. ICE representatives did not reply to requests for comment.

US officials reportedly disclosed the attack early in the week One report. It is not immediately clear whether the arrest was made.

The black suit is one of them More prolific ransomware operations In recent years, Targeting US cities like Dallasand organizations in the manufacturing, communications, and healthcare industries.

In 2024, the US cybersecurity agency CISA said that gangs were Rebranding from Royal to Black Suit. It is not uncommon for ransomware gangs to merge with other groups to skirt government-imposed sanctions that make it more difficult for them to benefit from cyberattacks.

Security researchers have it After being found That a new ransomware gang, known as chaos, is likely to be made up of former members of the Black Suit Gang.