Europeol has confirmed that a telegram channel represents the agency and offers a reward of $ 50,000 for information about two kilin ransomware administrators. The impotent later admitted that it was designed to troll researchers and journalists.
“We were also surprised to see this story,” Europeol told Blapping computer on Monday. “The announcement did not come from us.”
The statement came after a new Telegram channel called @Europolti on 16 August, in which two Qilin ransomware admins are known as “haise” and “xoracle” for information about admins.
During the ongoing international investigation, we confirmed that Cyber Criminal Group Kilin has met the worldwide ransomware attacks, severely disrupted significant infrastructure and cause significant financial losses, “the Emposter’s Telegram post said.
“We have identified two primary administrators working under the Alias Hyce and Jorchure, who coordinate colleagues and forcibly oversee recovery activities.”
“We are actively chasing all available leads in collaboration with international partners.”
“For information, a reward of up to $ 50,000 is offered which directly leads to the identification or location of these administrators.”
Source: Bleepingcomputer
Hyz is believed to have been considered one of the operators of the Killian Rainsmware Gang. Recruitment affiliate Ramp on Cybercrime Forum.
The Qilin Ransomware Operation was initially launched as “agenda” in August 2022. However, by September that year, it had resumed under the name Qilin, which continues to be used today.
The ransomware operation is one of the most active, currently targeting companies worldwide.
However, Europeol confirmed that it was fake, a new post appeared on the Imposter Channel, claiming that the troll was designed for researchers and journalists, some of whom had written articles about claims.
“It was so easy to run and the so -called ‘researchers’ and ‘journalists’ were fooled who only mimic the luggage .. Thanks to all of you!” Reads the new post.
Source: Bleepingcomputer
The post was signed by Rey, a hacker was first associated with violations in the telephone and orange group.
The danger actors started trolling on a telegram channel applying “scattered Spider”, “Shinoors”, and “Lapsus” on a telegram channel on a telegram channel in August
This is not the first time the danger actors attempted to mislead the media about cyber crime.
In 2021, a ramp admin, known as ‘Orange’ or ‘Boricelsin’ and who ran the “Gruv” Rainmware site, called the actors threatened to attack the USA. The actor with this danger was later approved by the US to join three ransomware operations that targeted victims across the United States.
After the media covered this post, including Bleepingcomputer, the danger actor claimed that it was fake and media and security researchers were designed to troll and manipulate.
However, from security researchers Mcafee and Intel 471 believe It was likely that the danger was trying to cover the actor for a failed Rainsmware-e-A-Service.
In 2023, Bleepingcomputer received a “tip” about the alleged arrest of two Canadian teenagers on the crypto-chori attack.
While Bleepingcomputer learned that this news was fake and not Cover the storyWe were told that this was done to manipulate the media and “troll” people accused of theft.
The passwords broke in 46% of the atmosphere, almost doubled by 25% last year.
Picus Blue Report 2025 Now get a wider look at more conclusions on prevention, detection and data exfIs.
