The HIVE ransomware group was operating a Software-as-a-Service (SaaS) model, replete with administrators, the use of initial access brokers to collect and identify targets, and the use of affiliates to conduct the attacks. It was the model for a sophisticated multi-layer operation that included easy-to-use web interfaces, a commission system with affiliates that promised to them a percentage of the total ransomware paid, and a dedicated effort to smartly target only those industries who HIVE operators believed were the most likely to pay their extortion.
https://www.cybeta.io/wp-content/uploads/HIVE.jpg8001200ACS Adminhttp://www.cybeta.io/wp-content/uploads/logo-transparent.svgACS Admin2023-04-28 19:24:332023-09-28 19:32:47Implications of the Takedown of HIVE Ransomware
Cybeta generates predictive analytics about the likelihood of future cyber events while delivering actionable intelligence focused on pre-attack infrastructure, supply chain risk, and metric-driven technology intelligence.We are comprised of former national security professionals and data science experts who do not believe you can automate human expertise.
Chicago: 30 South Wacker Drive Floor 22 Chicago, IL 60606
Indianapolis: 12175 Visionary Way Suite 880 Fishers, IN 46038