"Hive Ransomware Has Made $100m to Date"

According to a new joint advisory released by the FBI, the US Cybersecurity and Infrastructure Security Agency (CISA), and the Department of Health and Human Services (HHS), the Hive ransomware variant has made its operators and affiliates around $100 million, so far from over 1300 global companies.  The estimated profits generated by the ransomware-as-a-service (RaaS) variant come over a period of around 15 months after it was first discovered back in June 2021.  The advisory noted that victim organizations have come from various verticals, including government, communications, critical manufacturing, and IT, although the group has a particular focus on healthcare.  In the past, the group's affiliates gained initial access to victim networks via phishing emails containing booby-trapped attachments that exploited Microsoft Exchange Server vulnerabilities.  They have also focused on remote desktop infrastructure.  The advisory warned that Hive actors have been known to reinfect victim networks if organizations restored from backups without making a ransom payment.

Infosecurity reports: "Hive Ransomware Has Made $100m to Date"