The US government has announced a reward of up to $10 million for information leading to the location or identification of the leaders of the Hive ransomware crime group.
Since late July 2022, the FBI has penetrated Hive’s computer networks, accessing decryption keys and providing them to victims, thereby preventing potential ransom payments of up to $130 million. According to US cybersecurity and intelligence agencies, as of November 2022, Hive attackers demanded $100 million in ransom from more than 1,300 companies worldwide. The group has been active since June 2021, offers ransomware as a service (RaaS), and uses a double blackmail model by threatening to publish stolen victim data on its HiveLeaks website.
Operation Hive was dismantled in January 2023 by the FBI in coordination with the German and Dutch police, as well as Europol. The U.S. government continues to work with allies and partners to disrupt and deter criminals who threaten the foundation of the economy and critical infrastructure using ransomware.