{"id":2230,"date":"2023-12-19T19:20:34","date_gmt":"2023-12-19T19:20:34","guid":{"rendered":"https:\/\/cyberscoop.com\/?p=78595"},"modified":"2023-12-19T19:20:34","modified_gmt":"2023-12-19T19:20:34","slug":"fbi-seizes-alphv-leak-website-hours-later-ransomware-gang-claims-it-unseized-it","status":"publish","type":"post","link":"https:\/\/ddi.mohflo.net\/index.php\/2023\/12\/19\/fbi-seizes-alphv-leak-website-hours-later-ransomware-gang-claims-it-unseized-it\/","title":{"rendered":"FBI seizes ALPHV leak website. Hours later, ransomware gang claims it \u2018unseized\u2019 it"},"content":{"rendered":"<p><head> <meta charset=\"UTF-8\"> <meta name=\"viewport\" content=\"width=device-width, initial-scale=1\"> <meta name=\"robots\" content=\"index, follow, max-image-preview:large, max-snippet:-1, max-video-preview:-1\"> <!-- This site is optimized with the Yoast SEO Premium plugin v21.7 (Yoast SEO v21.7) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ --> <title>FBI seizes ALPHV leak website. Hours later, ransomware gang claims it \u2018unseized\u2019 it | CyberScoop<\/title> <meta name=\"description\" content=\"Law enforcement seized the websites of the notorious Russian-speaking group before the criminals say they seized it back.\"> <link rel=\"canonical\" href=\"https:\/\/cyberscoop.com\/fbi-seizes-alphv-leak-website-hours-later-ransomware-gang-claims-it-unseized-it\/\"> <meta property=\"og:locale\" content=\"en_US\"> <meta property=\"og:type\" content=\"article\"> <meta property=\"og:title\" content=\"FBI seizes ALPHV leak website. Hours later, ransomware gang claims it \u2018unseized\u2019 it\"> <meta property=\"og:description\" content=\"Law enforcement seized the websites of the notorious Russian-speaking group before the criminals say they seized it back.\"> <meta property=\"og:url\" content=\"https:\/\/cyberscoop.com\/fbi-seizes-alphv-leak-website-hours-later-ransomware-gang-claims-it-unseized-it\/\"> <meta property=\"og:site_name\" content=\"CyberScoop\"> <meta property=\"article:published_time\" content=\"2023-12-19T19:20:34+00:00\"> <meta property=\"article:modified_time\" content=\"2023-12-19T19:31:15+00:00\"> <meta property=\"og:image\" content=\"https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/12\/fbi-seizes-alphv-leak-website-hours-later-ransomware-gang-claims-it-unseized-it-2.png\"> <meta property=\"og:image:width\" content=\"1920\"> <meta property=\"og:image:height\" content=\"973\"> <meta property=\"og:image:type\" content=\"image\/png\"> <meta name=\"author\" content=\"Christian Vasquez\"> <meta name=\"twitter:card\" content=\"summary_large_image\"> <meta name=\"twitter:creator\" content=\"@chrismvasq\"> <!-- \/ Yoast SEO Premium plugin. --> <link rel=\"dns-prefetch\" href=\"\/\/securepubads.g.doubleclick.net\">\n<link rel=\"dns-prefetch\" href=\"\/\/use.typekit.net\">\n<link rel=\"alternate\" type=\"application\/rss+xml\" title=\"CyberScoop \u00bb Feed\" href=\"https:\/\/cyberscoop.com\/feed\/\">\n<link rel=\"alternate\" type=\"application\/rss+xml\" title=\"CyberScoop \u00bb Comments Feed\" href=\"https:\/\/cyberscoop.com\/comments\/feed\/\"> <link rel=\"stylesheet\" id=\"all-css-2\" href=\"https:\/\/cyberscoop.com\/wp-includes\/css\/dist\/block-library\/style.min.css?m=1701905043g\" type=\"text\/css\" media=\"all\"> <link rel=\"stylesheet\" id=\"all-css-6\" href=\"https:\/\/cyberscoop.com\/wp-content\/mu-plugins\/search\/elasticpress-next\/dist\/css\/related-posts-block-styles.min.css?m=1701205643g\" type=\"text\/css\" media=\"all\"> <link rel=\"stylesheet\" id=\"all-css-8\" href=\"https:\/\/cyberscoop.com\/wp-content\/themes\/scoopnewsgroup\/dist\/css\/frontend.css?m=1702656561g\" type=\"text\/css\" media=\"all\">\n<link rel=\"stylesheet\" id=\"typekit-css\" href=\"https:\/\/use.typekit.net\/itk2qbh.css?ver=7dab012cdc88b5676610\" media=\"all\"> <link rel=\"https:\/\/api.w.org\/\" href=\"https:\/\/cyberscoop.com\/wp-json\/\"><link rel=\"alternate\" type=\"application\/json\" href=\"https:\/\/cyberscoop.com\/wp-json\/wp\/v2\/posts\/78595\"><link rel=\"EditURI\" type=\"application\/rsd+xml\" title=\"RSD\" href=\"https:\/\/cyberscoop.com\/xmlrpc.php?rsd\">\n<meta name=\"generator\" content=\"WordPress 6.4.2\">\n<link rel=\"shortlink\" href=\"https:\/\/cyberscoop.com\/?p=78595\">\n<link rel=\"alternate\" type=\"application\/json+oembed\" href=\"https:\/\/cyberscoop.com\/wp-json\/oembed\/1.0\/embed?url=https%3A%2F%2Fcyberscoop.com%2Ffbi-seizes-alphv-leak-website-hours-later-ransomware-gang-claims-it-unseized-it%2F\">\n<link rel=\"alternate\" type=\"text\/xml+oembed\" href=\"https:\/\/cyberscoop.com\/wp-json\/oembed\/1.0\/embed?url=https%3A%2F%2Fcyberscoop.com%2Ffbi-seizes-alphv-leak-website-hours-later-ransomware-gang-claims-it-unseized-it%2F&amp;format=xml\"> <!-- Google Tag Manager --> <!-- End Google Tag Manager --> <link rel=\"icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=32\" sizes=\"32x32\">\n<link rel=\"icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=192\" sizes=\"192x192\">\n<link rel=\"apple-touch-icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=180\">\n<meta name=\"msapplication-TileImage\" content=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=270\"> <\/head><body class=\"post-template-default single single-post postid-78595 single-format-standard\" id=\"readabilityBody\"> <a href=\"https:\/\/cyberscoop.com\/fbi-seizes-alphv-leak-website-hours-later-ransomware-gang-claims-it-unseized-it\/#main\" class=\"skip-to-content-link visually-hidden-focusable\">Skip to main content<\/a> <\/p>\n<div class=\"ad ad--top ad--top-desktop\">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p> <main id=\"main\" role=\"main\" tabindex=\"-1\"> <\/p>\n<div class=\"ad ad--top ad--top-mobile\">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<section id=\"stickybar\" class=\"stickybar stickybar--newsletter js-stickybar\" readability=\"0.82\"> <button class=\"stickybar__close js-stickybar-close\" aria-controls=\"stickybar\"> <svg class=\"icon icon--close\" width=\"21\" height=\"22\" viewBox=\"0 0 21 22\" fill=\"none\"><path d=\"m.822.518-.805.805L9.695 11 .017 20.678l.805.805 9.678-9.678 9.677 9.678.806-.805L11.305 11l9.678-9.677-.806-.805-9.677 9.677L.822.518Z\" fill=\"currentColor\" \/><\/svg> <span class=\"visually-hidden\">Close<\/span> <\/button> <\/section>\n<article class=\"single-article content\">\n<div class=\"single-article__container js-single-article-content\">\n<header class=\"single-article__header \" readability=\"24.645772594752\">\n<div class=\"single-article__header-content\" readability=\"29.90625\">\n<p> Law enforcement seized the websites of the notorious Russian-speaking group before the criminals say they seized it back. <\/p>\n<\/p><\/div>\n<div class=\"single-article__cover-wrap\">\n<figure class=\"single-article__cover\"> <img data-recalc-dims=\"1\" fetchpriority=\"high\" width=\"640\" height=\"324\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2023\/12\/fbi-seizes-alphv-leak-website-hours-later-ransomware-gang-claims-it-unseized-it.png?resize=640%2C324&#038;ssl=1\" class=\"single-article__cover-image wp-post-image\" alt decoding=\"async\" fetchpriority=\"high\" srcset=\"https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/12\/fbi-seizes-alphv-leak-website-hours-later-ransomware-gang-claims-it-unseized-it-2.png 1920w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/12\/fbi-seizes-alphv-leak-website-hours-later-ransomware-gang-claims-it-unseized-it-2.png?resize=300,152 300w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/12\/fbi-seizes-alphv-leak-website-hours-later-ransomware-gang-claims-it-unseized-it-2.png?resize=768,389 768w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/12\/fbi-seizes-alphv-leak-website-hours-later-ransomware-gang-claims-it-unseized-it-2.png?resize=1024,519 1024w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/12\/fbi-seizes-alphv-leak-website-hours-later-ransomware-gang-claims-it-unseized-it-2.png?resize=1536,778 1536w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/12\/fbi-seizes-alphv-leak-website-hours-later-ransomware-gang-claims-it-unseized-it-2.png?resize=600,304 600w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/12\/fbi-seizes-alphv-leak-website-hours-later-ransomware-gang-claims-it-unseized-it-2.png?resize=1200,608 1200w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/12\/fbi-seizes-alphv-leak-website-hours-later-ransomware-gang-claims-it-unseized-it-2.png?resize=1500,760 1500w\" sizes=\"(max-width: 1200px) 100vw, 1200px\"><figcaption> A screenshot of the ALPHV leak site following the seizure by law enforcement agencies. <\/figcaption><\/figure>\n<\/p><\/div>\n<\/header>\n<div class=\"single-article__content\">\n<div class=\"single-article__content-inner has-drop-cap\"> <html readability=\"75.310573366215\"><body readability=\"152.42231983081\"><\/p>\n<p>The FBI and an international consortium of law enforcement agencies claimed to have seized the main leak site from the notorious ransomware gang ALPHV, but hours later the gang claimed to have \u201cunseized it,\u201d while also lifting targeting rules for attacking critical infrastructure.<\/p>\n<p>The ransomware gang is among the most prolific and has more than 1,000 victims, totaling hundreds of millions of dollars paid in ransoms. It has hit multiple industries, including critical services like health care and defense industrial base companies.&nbsp;<\/p>\n<p>Also known as BlackCat, the Russian-speaking ransomware-as-a-service group first emerged in late 2021, and has been linked to other criminal gangs like DarkSide\/Blackmatter and Revil. The Justice Department called the group the \u201csecond most prolific ransomware-as-a-service variant in the world.\u201d<\/p>\n<p>\u201cIn disrupting the BlackCat ransomware group, the Justice Department has once again hacked the hackers,\u201d said Deputy Attorney General Lisa Monaco <a href=\"https:\/\/www.justice.gov\/opa\/pr\/justice-department-disrupts-prolific-alphvblackcat-ransomware-variant\">in a statement<\/a>. \u201cWith a decryption tool provided by the FBI to hundreds of ransomware victims worldwide, businesses and schools were able to reopen, and health care and emergency services were able to come back online. We will continue to prioritize disruptions and place victims at the center of our strategy to dismantle the ecosystem fueling cybercrime.\u201d<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>But just hours after the press release was sent, the ALPHV gang said it had \u201cunseized\u201d the website and was lifting targeting rules for critical infrastructure. However, experts are quick to note that the gang has previously targeted critical infrastructure, highlighting the tendency among these groups to lie or exaggerate.<\/p>\n<p>\u201cBecause of their actions, we are introducing new rules, or rather, we are removing ALL rules, except one, you cannot touch the [Commonwealth of Independent States], you can now block hospitals, nuclear power plants, anything, anywhere,\u201d according to a translation of the website that, hours before, showed the logos of law enforcement authorities around the world.<\/p>\n<figure class=\"wp-block-image size-large\"><img data-recalc-dims=\"1\" decoding=\"async\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2023\/12\/fbi-seizes-alphv-leak-website-hours-later-ransomware-gang-claims-it-unseized-it-1.png?w=640&#038;ssl=1\" alt class=\"wp-image-78600\"><figcaption class=\"wp-element-caption\">A screenshot of the ALPHV website taken at 1:30 PM Eastern Time.<\/figcaption><\/figure>\n<p>The gang did note that ransomware affiliates still cannot target countries that used to be a part of the Soviet Union, a common tactic for ransomware gangs looking to avoid penalty as long as they don\u2019t target Russian interests.<\/p>\n<p>It\u2019s possible that the gang simply registered another server to link to the website, <a href=\"https:\/\/twitter.com\/uuallan\/status\/1737173605681635533\">according to Allan Liska<\/a>, a threat intelligence analyst with the cybersecurity firm Recorded Future.<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>\u201cThe way .onion addressing works is that, as long as you have the signing key, if you register a second server with that address the newest server will be believed by default,\u201d Liska wrote on X.<\/p>\n<p>\u201cThis reeks of desperation,\u201d Alexander Leslie, a threat intelligence analyst at Recorded Future, <a href=\"https:\/\/twitter.com\/aejleslie\/status\/1737181268838638062\">said on X.<\/a> \u201cRansomware groups, including ALPHV, have been routinely targeting critical infrastructure for quite a while. This isn\u2019t new.\u201d<\/p>\n<p>The gang is thought to be based <a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/alphv-blackcat-this-years-most-sophisticated-ransomware\/\">out of Russia<\/a> and engages in stealing files before encrypting them to use as further leverage by threatening to leak sensitive data. ALPHV is a ransomware-as-a-service operator, meaning they lease out the ransomware program to affiliates for a portion of the extortion paid. One of the most well-known affiliates is <a href=\"https:\/\/cyberscoop.com\/fbi-scattered-spider-investigation\/\">Scattered Spider, or UNC3944<\/a>, which allegedly hacked both MGM International and Caesars Entertainment in Las Vegas.<\/p>\n<p>The seizure is at least the second time this year that authorities have thwarted one of the larger ransomware operators, following the <a href=\"https:\/\/www.justice.gov\/opa\/pr\/us-department-justice-disrupts-hive-ransomware-variant\">January takedown of the notorious Hive ransomware<\/a> gang\u2019s infrastructure.<\/p>\n<p>Just last week, ALPHV had <a href=\"https:\/\/www.malwarebytes.com\/blog\/ransomware\/2023\/12\/alphv-ransomware-gang-returns-sorta\">difficulties with its website<\/a>, causing speculation that law enforcement was behind it. However, the gang claimed it was due to \u201chardware failure.\u201d<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>Now instead of a list of victims, ALPHV\u2019s leak website now displays a splash page with the logos of law enforcement agencies from multiple countries, including Germany, Denmark, Australia, the United Kingdom, Spain, Switzerland, Austria as well as Europol.<\/p>\n<p>\u201cThe FBI has also gained visibility into the Blackcat ransomware group\u2019s computer network as part of the investigation and has seized several websites that the group operated,\u201d the DOJ said.<\/p>\n<p>The FBI claimed to have taken over multiple websites and developed a decryption tool for ALPHV\u2019s victims that the agency is offering to more than 500 impacted victims, according to the press release. The FBI has since worked with \u201cdozens of victims\u201d to use the decryption tool, saving roughly $68 million in ransom payments, the DOJ said.<\/p>\n<p>Charles Carmakal, chief technology officer at Mandiant Consulting at Google Cloud, called the seizure \u201ca huge win for law enforcement and the community. ALPHV was one of the most active ransomware-as-a-service (RaaS) programs and they worked with both Russian affiliates and English-speaking western affiliates.<\/p>\n<p>\u201cSome of the ALPHV affiliates are still active however, including UNC3944 (Scattered Spider). We expect some affiliates will continue their intrusions as normal, but they will likely try to establish relationships with <a href=\"https:\/\/cyberscoop.com\/lockbit-ransomware-crew-law-enforcement-hive\/\">other RaaS programs<\/a> for encryption, extortion, and victim shaming support,\u201d he added.<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>The FBI gained access to ALPHV\u2019s backend infrastructure through a \u201cconfidential human source\u201d that accessed an online panel used to manage extortions, <a href=\"https:\/\/www.justice.gov\/media\/1329536\/dl?inline\">according to the search warrant<\/a>.<\/p>\n<p>The source \u2014 who \u201croutinely provides reliable information related to ongoing cybercrime investigations\u201d \u2014 gained access to the panel after answering an online advertisement for a ALPHV affiliate position and successfully applied.<\/p>\n<p>Using this new access, the FBI collected 946 public\/private key pairs for websites that ALPHV uses to host communication sites, leak sites and affiliate panels.<\/p>\n<p>\u201cThe FBI has conducted extensive and outgoing outreach to victims,\u201d the search warrant noted. \u201cThis outreach includes a decryption operation using a tool the FBI developed, which the FBI has offered to over 400 victims around the world.\u201d<\/p>\n<p><\/body> <\/p>\n<footer class=\"single-article__footer\" readability=\"1.4941176470588\">\n<div class=\"author-card\" readability=\"9\">\n<div class=\"author-card__avatar\">\n<figure class=\"author-card__image-wrap\"> <img data-recalc-dims=\"1\" decoding=\"async\" class=\"author-card__image\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2023\/12\/fbi-seizes-alphv-leak-website-hours-later-ransomware-gang-claims-it-unseized-it.jpg?w=640&#038;ssl=1\" alt=\"Christian Vasquez\"> <\/figure>\n<\/p><\/div>\n<p><h4 class=\"author-card__name\">Written by Christian Vasquez<\/h4>\n<p> Christian covers industrial cybersecurity for CyberScoop News. He previously wrote for E&amp;E News at POLITICO covering cybersecurity in the energy sector. Reach out:&nbsp; christian.vasquez at cyberscoop dot com <\/p>\n<\/p><\/div>\n<div class=\"single-article__tags-container\">\n<h4 class=\"single-article__tags-title\">In This Story<\/h4>\n<\/p><\/div>\n<\/footer>\n<p> <\/html><\/div>\n<\/p><\/div>\n<\/p><\/div>\n<div class=\"single-article__ads js-single-article-sidebar\">\n<div class=\"ad ad--sidebar js-single-article-sidebar-5 ad--rightrail_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div class=\"ad ad--sidebar js-single-article-sidebar-4 ad--rightrail_2 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div class=\"ad ad--sidebar js-single-article-sidebar-3 ad--rightrail_3 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div><\/div>\n<\/article>\n<div class=\"popular-stories popular-stories--single-post\">\n<div class=\"popular-stories__container\">\n<h2 class=\"popular-stories__title\"> More Scoops <\/h2>\n<p> <!-- .popular-stories__stories --> <\/div>\n<p><!-- .popular-stories__inner -->\n<\/div>\n<p><!-- .popular-stories --> <\/p>\n<section class=\"latest-podcasts\">\n<h2 class=\"latest-podcasts__title\"> Latest Podcasts\t<\/h2>\n<\/section>\n<div class=\"top-categories\">\n<div class=\"top-categories__container\">\n<h3 class=\"top-categories__category-title\">Technology<\/h3>\n<\/p><\/div>\n<div class=\"top-categories__container\">\n<h3 class=\"top-categories__category-title\">Government<\/h3>\n<\/p><\/div>\n<\/p><\/div>\n<p> <\/main> <\/p>\n<div class=\"ad ad--bottom \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div id=\"interstitial\" class=\"welcome__container\"> <button id=\"close-modal-1\" class=\"welcome__clickable_area\"><\/button> <\/p>\n<div class=\"welcome__ad_wrapper\">\n<p> <button id=\"close-modal-3\" class=\"welcome__continue-button\">Continue to CyberScoop<\/button> <\/p>\n<\/p><\/div>\n<\/p><\/div>\n<p> <!-- Start of HubSpot Embed Code --> <!-- End of HubSpot Embed Code --> <\/body> <a href=\"https:\/\/cyberscoop.com\/fbi-seizes-alphv-leak-website-hours-later-ransomware-gang-claims-it-unseized-it\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>FBI seizes ALPHV leak website. Hours later, ransomware gang claims<\/p>\n","protected":false},"author":11,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[950,1327,282,669,1184,46,288],"tags":[955,1328,286,671,1186,54,294],"class_list":["post-2230","post","type-post","status-publish","format-standard","hentry","category-alphv","category-black-cat","category-cybercrime","category-federal-bureau-of-investigation-fbi","category-hive-ransomware","category-ransomware","category-threats","tag-alphv","tag-black-cat","tag-cybercrime","tag-federal-bureau-of-investigation-fbi","tag-hive-ransomware","tag-ransomware","tag-threats"],"featured_image_urls":{"full":"","thumbnail":"","medium":"","medium_large":"","large":"","1536x1536":"","2048x2048":"","chromenews-featured":"","chromenews-large":"","chromenews-medium":""},"author_info":{"display_name":"Cyber Scoop","author_link":"https:\/\/ddi.mohflo.net\/index.php\/author\/cyberscoop\/"},"category_info":"<a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/alphv\/\" rel=\"category tag\">ALPHV<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/black-cat\/\" rel=\"category tag\">Black Cat<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/cybercrime\/\" rel=\"category tag\">cybercrime<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/federal-bureau-of-investigation-fbi\/\" rel=\"category tag\">Federal Bureau of Investigation (FBI)<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/hive-ransomware\/\" rel=\"category tag\">Hive ransomware<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/ransomware\/\" rel=\"category tag\">ransomware<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/threats\/\" rel=\"category tag\">Threats<\/a>","tag_info":"Threats","comment_count":"0","jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/2230","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/users\/11"}],"replies":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/comments?post=2230"}],"version-history":[{"count":0,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/2230\/revisions"}],"wp:attachment":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/media?parent=2230"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/categories?post=2230"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/tags?post=2230"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}