The Maze ransomware gang, behind some of the most notorious attacks of 2020, has announced that it’s shutting down its operations for good.
The notorious group, first discovered in May 2019, built a solid reputation in a short space of time to encrypt all the files it can on infected systems before demanding a ransom to return the documents.
Maze distinguished itself from several other groups in the way it threatened to release the information over the internet should the ransom not have been paid. It’s a method that has since inspired other groups, such as Ryuk, Mount Locker and REvil, to set up their own sites and threaten public disclosure in a similar way.
The gang would have issued a warning that they were planning to release details of a security breach, or distribute commercially valuable information, and use stolen data to attack clients and partners.
Maze has been highly active over the last year and a half, most recently using its devastating strain to cripple the systems of several large companies, including Canon in August, as well as a Xerox in July.
The group, meanwhile, targeted the systems of several major organisations in June, including VT San Antonio Aerospace and MaxLinear, in attacks that involved hackers stealing large volumes of data. Cognizant, too, fell victim to Maze in April, in an attack which led to the loss of up to $70 million for the IT services provider.
“The Project is closed,” the press release said, according to cyber security expert Graham Cluley. “Maze Team Project is announcing it is officially closed. All the links to out project, using of our brand, our work methods should be considered to be a scam.
RELATED RESOURCE
2020 Cyber Threat Intelligence (CTI) survey
How to measure the effectiveness of your CTI programme
“We never had partners or official successors. Our specialists do not works with any other software. Nobody and never will be able to host new partners at our news website. The Maze cartel was never exists and is not existing now. It can be found only inside the heads of the journalists who wrote about it [sic].”
The group continued to warn about the way that cryptocurrency markets are changing, with the value of digital currencies rising “higher and higher”, to the extent all Bitcoin will be concentrated in the hands of a few. The suggestion is that these market shifts may affect how lucrative the Maze group’s cyber crime antics may be in the future.
-
‘I take pleasure in thinking I can rid society of at least some of them’: A cyber vigilante is dumping information on notorious ransomware criminals – and security experts say police will be keeping close tabsNews An anonymous whistleblower has released large amounts of data allegedly linked to the ransomware gangs
-
It's been a bad week for ransomware operatorsNews A host of ransomware strains have been neutralized, servers seized, and key players indicted
-
Everything we know about the Peter Green Chilled cyber attackNews A ransomware attack on the chilled food distributor highlights the supply chain risks within the retail sector
-
Scattered Spider: Who are the alleged hackers behind the M&S cyber attack?News The Scattered Spider group has been highly active in recent years
-
Ransomware attacks are rising — but quiet payouts could mean there's more than actually reported
News Ransomware attacks continue to climb, but they may be even higher than official figures show as companies choose to quietly pay to make such incidents go away.
-
Cleo attack victim list grows as Hertz confirms customer data stolen – and security experts say it won't be the lastNews Hertz has confirmed it suffered a data breach as a result of the Cleo zero-day vulnerability in late 2024, with the car rental giant warning that customer data was stolen.
-
‘Phishing kits are a force multiplier': Cheap cyber crime kits can be bought on the dark web for less than $25 – and experts warn it’s lowering the barrier of entry for amateur hackersNews Research from NordVPN shows phishing kits are now widely available on the dark web and via messaging apps like Telegram, and are often selling for less than $25.
-
Healthcare systems are rife with exploits — and ransomware gangs have noticedNews Nearly nine-in-ten healthcare organizations have medical devices that are vulnerable to exploits, and ransomware groups are taking notice.
