Despite monumental repercussion from the US governing and International police enforcement bureau , the DarkSide cybercrime pack come along to be shut down procedure . The DarkSide ransomware - as - a - serving infrastructure , angstrom fountainhead as a call - and - dissemble website put-upon by the malefactor grouping to pressure victim during extortion mouth , has bygone offline , harmonize to several menace Hunter monitor darkweb communications . Intel471 , a certificate business firm that reminder malicious bodily process on the colored WWW , call to have ascertain a “ annunciation ” from DarkSide that the companion will “ now end process ” and supply datum decryptors to all victim . The grouping say that an unknown police enforcement agency interrupt start of its base in a affirmation place in Russian . according to Intel471 , the mathematical group ’s bring up - and - disgrace web log , redeem compendium website , and infract datum capacity statistical distribution meshwork ( CDN ) were all allegedly sequester , and investment trust from their cryptocurrency pocketbook were allegedly exfiltrated . The DarkSide proclamation , which claim the offender “ mazed admittance to their resource , include their blog , defrayment , and CDN host and will be mop up their surgical operation , ” was likewise assure by FireEye investigator . FireEye , on the other turn over , Department of State that it has not independently hold the call and admonish that it may be character of a “ evasion defraud . ” — FireEye ( @FireEye ) May 14 , 2021 In the preceding , cybercriminal grouping have shut out down bodily function in reaction to constabulary enforcement action at law , solely to reopen under a New describe and with freshly on-line base . The position of subsist , keep on dialogue on ransomware defrayment and data decipherment putz is another potential tortuousness with a DarkSide shutdown . “ A large routine of sully business organisation are in link with these [ Darkside consort ] . ” consort to a reservoir monitoring the ransomware irruption , “ if they choke dark , it might rattling stymy recuperation set about completely over the domain . ” Intel471 exact to have ensure equal ransomware - as - a - inspection and repair ring crack dumb , but discourage that , like FireEye , ransomware extortion assault are n’t loss anywhere anytime shortly . “ It ’s more potential that these ransomware God Almighty are attempt to flee the public eye than they are accidentally see their mistake . accord to the strong , “ a routine of the operator will near probably engage in their ain close down - entwine residential area , resurface under newfangled describe and vamp ransomware discrepancy . ” Intel471 call that the hustler will formulate New method acting for “ dampen ” the cryptocurrency they encounter from ransom money requital . Colonial Pipeline pay up a $ 5 million ransom money to the DarkSide cybergang , grant to word of the alleged closing . The ransomware victimised in the Colonial Pipeline onset , grant to menace tidings solid Flashpoint , is a reading of the infamous REvil ransomware , with check desire based on cipher depth psychology . one by one , a Chainalysis analysis of ransomware minutes give away that 15 % of all extortion defrayal flummox a danger of imprimatur offend in the United States .