Someone hacked ransomware gang Everest’s leak site

Cyberattack Targets Everest Ransomware Gang Leak Site

The data leak website associated with the Everest ransomware group has been reportedly compromised and defaced in a recent cyber incident. This breach, discovered this weekend, impacts the site utilized by the ransomware operators to publish sensitive data stolen from victims who refuse to pay extortion demands.

Everest Ransomware Leak Site Defaced

Visitors to the Everest ransomware gang’s leak site were met with a defaced page featuring a simple text message: “Don’t do crime CRIME IS BAD xoxo from Prague.” This message replaced the platform’s usual content, which typically showcases exfiltrated data intended to pressure victims into paying ransoms.

Details of the Cyber Incident

The defacement of the website was ongoing at the time of this report. It remains unclear whether the cyberattack against the leak site resulted in a broader data breach for the Everest ransomware group itself. Security experts are investigating the full scope and impact of this incident.

Everest Ransomware Group: An Overview

Everest is identified as a Russia-linked ransomware operation that has been active since 2020. The group has claimed responsibility for numerous high-profile cyberattacks and data breaches. Notable incidents attributed to Everest include the theft of data impacting over 420,000 customers of the cannabis retail company Stiizy. Furthermore, the U.S. government has linked the Everest group to cyber intrusions targeting entities such as NASA and government agencies in Brazil.

Ransomware Attack Trends

Incidents of ransomware and digital extortion continue to rise globally. However, recent data suggests a shift in victim behavior, with a decrease in ransom payments made to cybercriminals in 2024. This decline may reflect an increasing unwillingness of organizations to meet substantial financial demands from ransomware operators.

Law Enforcement and Ransomware Disruption

Law enforcement agencies worldwide have intensified efforts to disrupt and dismantle ransomware gangs. Operations targeting groups like LockBit and Radar have demonstrated some success. Simultaneously, internal vulnerabilities, including data leaks and sabotage, are also impacting the operational capabilities of various ransomware groups, adding further complexity to the cyber threat landscape.

🕐 Top News in the Last Hour By Importance Score

#	Title	📊 i-Score
1	Suicides and attempts fall in health systems implementing the 'Zero Suicide Model,' study finds	🟢 85 / 100
2	Greece holiday warning as Foreign Office alerts UK tourists on 'disasters'	🔴 75 / 100
3	Space Force missile-tracking “Foo Fighter” satellites clear design milestone	🔴 75 / 100
4	Ex-Nazi camp secretary convicted of aiding mass murder died at age 99	🔴 75 / 100
5	Trump asks US Supreme Court to block return of wrongly deported man	🔴 72 / 100
6	Apple’s 20th-Anniversary iPhone Could Bring Major Design Overhaul	🔵 43 / 100
7	Mario Kart World Is Coming To Switch 2 At Launch	🔵 42 / 100
8	Ex-Masters champion pulls out of tournament as he joins Tiger Woods and 15 others	🔵 40 / 100
9	Reunion's Rose Ayling-Ellis pays tribute to 'amazing' co-star in new BBC drama	🔵 40 / 100
10	Gardeners urged to be alert over greenflies surge – and what to do to stop them	🔵 35 / 100

View More Top News ➡️