Select Page

DarkSide Hackers Reportedly Closing Down After Retaliation Routs Their Infrastructure

DarkSide Hackers Reportedly Closing Down After Retaliation Routs Their Infrastructure

DarkSide Hackers Reportedly Closing Down After Retaliation Routs Their Infrastructure

The hacker group responsible for the ransomware attack on Colonial Pipeline that caused fuel shortages in the Southeast US appears to be shutting down after all its recent success, according to WSJ

The operator of the ransomware group Darkside, believed to originate in Eastern Europe or Russia, has been unable to access its computer systems to conduct cyber attacks. Associates close to the hacking group said it would disband, citing international pressure from the US, said security research firm FireEye. 

Recorded Future threat intelligence analyst Dmitry Smilyanets said DarkSide has lost control of its servers and lost some money it made through ransom payments. 

“A few hours ago, we lost access to the public part of our infrastructure, namely: Blog. Payment server. DOS servers,” Darksupp, the operator of the Darkside ransomware, said.

Now, these servers are unavailable via SSH, and the hosting panels are blocked.”

Darksupp also reported cryptocurrency funds were withdrawn from the payment server and would be split between itself and its associates.

This sudden dispersion of the hacking group is suspicious. Who would disband a hack operation for a measly $5 million – that will barely buy a mansion in the Bay Area. 

On Thursday, President Joe Biden announced his administration had been “in direct communication with Moscow about the imperative for responsible countries to take decisive action against these ransomware networks” and would “pursue a measure to disrupt their ability to operate.”

Biden said, “We do not believe the Russian government was involved in this attack, but we do have strong reason to believe that the criminals who did the attack are living in Russia, that’s where it came from.”

But not everyone is convinced DarkSide is a legitimate hacking group but rather a cover for a rogue group of CIA hackers. 

Natalya Kaspersky, the founder and former CEO of security software firm Kaspersky Lab, made an explosive suggestion in an interview with Russian state-owned domestic news agency RIA Novosti that CIA hackers were actually behind the Colonial Pipeline attack, reported RT News

Kaspersky said the Umbrage team, which is part of the Remote Development Branch under the CIA’s Center for Cyber Intelligence, can mask its hackers as outside ones and leave behind the “fingerprints” of the external hackers when it breaks into electronic devices. 

WikiLeaks in 2017 shed light on the Umbrage team. At the time, USA Today said CIA operatives “may have been cataloging hacking methods from outside hackers, including in Russia, that would have allowed the agency to mask their identity by employing the method during espionage.”

Kaspersky pointed out a list “of the countries under whose hacker groups this UMBRAGE is disguised – Russia, North Korea, China, Iran.” She claimed that “therefore, it cannot be said with certainty that a hacker group carried out the attack from Russia and that it was not a provocation made themselves from there, or from some other country.” 

… more things that make you go hmm. 

Tyler Durden
Fri, 05/14/2021 – 13:39

This post has been republished with permission from a publicly-available RSS feed found on Zero Hedge. The views expressed by the original author(s) do not necessarily reflect the opinions or views of The Libertarian Hub, its owners or administrators. Any images included in the original article belong to and are the sole responsibility of the original author/website. The Libertarian Hub makes no claims of ownership of any imported photos/images and shall not be held liable for any unintended copyright infringement. Submit a DCMA takedown request.

-> Click Here to Read the Original Article <-

About The Author

Tyler Durden

Zero Hedge's mission is to widen the scope of financial, economic and political information available to the professional investing public, to skeptically examine and, where necessary, attack the flaccid institution that financial journalism has become, to liberate oppressed knowledge, to provide analysis uninhibited by political constraint and to facilitate information's unending quest for freedom. Visit

Leave a reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.


Bringing together a variety of news and information from some of today’s most important libertarian thought leaders. All feeds are checked and refreshed every hour and pages auto-refresh every 15 minutes. External images are deleted after 30 days.

Time since last refresh: 0 second

Publish Your Own Article

Follow The Libertarian Hub

Please consider donating using any of the cryptocurrencies below or use the Brave browser to tip using Basic Attention Tokens (BAT). Your anonymous contributions help keep this website running for everyone to enjoy!


Take Control of Your Domain Names
The Ultimate Managed Hosting Platform

Weekly Newsletter

Newsletter Signup

Subscribe to our newsletter to receive a weekly email report of the top five most popular articles on the Libertarian Hub!

Weekly Newsletter SignupTop 5 Stories of the Week

Subscribe to our newsletter to receive a weekly email report of the top five most popular articles on the Libertarian Hub!