The Federal Security Service of the Russian Federation says that they shut down the REvil ransomware gang after U.S. authorities reported on the leader.
REvil ransomware emerged in April 2019 from the void left behind by the shut down of the GandCrab operation.
FSB’s action against REvil comes after the U.S. and international law enforcement organizations joined forces to identify and arrest members of ransomware operations.
As a result, the U.S. announced in November 2021 that it had arrested a REvil ransomware affiliate responsible for the Kaseya attack and seized over $6 million from another Revil partner, believed to have deployed about 3,000 ransomware attacks.
The same month, authorities in Romania arrested two REvil ransomware affiliates responsible for 5,000 attacks that brought them EUR 500,000 from collected ransoms.
Update : Added background information about the REvil ransomware gang and arrests of its affiliates.