According to CryptoPotato, a newly-emerged ransomware group named Akira has been flagged by prominent global agencies for its widespread cyber intrusions. The group, believed to be just a year old, has breached over 250 organizations worldwide, accumulating nearly $42 million in ransom payments. Investigations by the United States Federal Bureau of Investigation (FBI) have shown that Akira has been actively targeting businesses and critical infrastructure across North America, Europe, and Australia since March 2023. Initially, Akira focused on Windows systems, but its threat landscape expanded with the discovery of its Linux variant by the FBI.
In response to this escalating threat, the FBI, Cybersecurity and Infrastructure Security Agency (CISA), Europol’s European Cybercrime Centre (EC3), and the Netherlands’ National Cyber Security Centre (NCSC-NL) jointly issued a cybersecurity advisory (CSA) to raise awareness and mitigate the risks posed by Akira in the future. The group has recently targeted Nissan Oceania and Stanford University in ransomware attacks. Nissan Oceania reported a data breach affecting 100,000 individuals in March, and Stanford University disclosed a security issue affecting 27,000 individuals last month, both incidents linked to Akira.
The threat actors are known to use a double-extortion tactic, encrypting systems after taking data. The ransom note gives each company a unique code and a .onion URL to contact them. They don’t ask for ransom or payment details on the hacked networks; they only share them when contacted by the victim. Payments are in Bitcoin to the addresses they provide. These entities even threaten to publish stolen data on the Tor network and sometimes reach out to affected companies, according to the FBI’s official statement.
Ransomware made a comeback in 2023, with payments surpassing $1 billion, marking an all-time high. Centralized exchanges and mixers emerged as primary venues for laundering these illicit funds, dominating transaction channels. Despite this, newer laundering services like bridges and instant exchangers gained momentum throughout the year.