The US State Department is offering substantial rewards for information leading to the identification and location of leaders of the Hive ransomware group [3], as part of the Transnational Organized Crime Rewards Program [1] [3] [4]. They are also offering rewards for information that leads to the arrest and conviction of any individual involved in Hive attacks [3].


In January 2023 [3], an international law enforcement operation dismantled the gang’s infrastructure [3], enabling the FBI to gain access to the group’s computer networks [3]. As a result [3], the FBI successfully accessed Hive’s servers and provided decryption keys to over 1,000 victims [2], preventing $130 million in unpaid ransoms [2]. Hive is a ransomware-as-a-service group that primarily targets critical industries such as healthcare [3], education [3], and government [1] [3] [4]. They employ phishing techniques to steal data and encrypt devices [1] [4], and have managed to steal over $100 million in ransomware payments from more than 1,500 victims worldwide [1] [4].


The US government is committed to identifying and bringing to justice those responsible for ransomware attacks [1] [4]. While the takedown of Hive has had a significant impact, experts believe that other threat actors will quickly fill the void in the ransomware landscape [2]. It is crucial for organizations to remain vigilant and implement robust cybersecurity measures to mitigate the risks posed by ransomware attacks.