The dark web leak site run by the notorious Everest ransomware gang was itself breached and defaced this past weekend. Attackers altered Everest’s page, replacing its contents with a simple, cautionary message: “Don’t do crime CRIME IS BAD xoxo from Prague.”
As of the latest updates, the defacement remains unchanged, and it’s unclear whether Everest suffered a data breach during the intrusion.
Everest, a prominent ransomware operation believed to have ties to Russia, emerged in 2020 and quickly established a reputation for high-profile attacks. Among its noted breaches were incidents involving the U.S. space agency NASA and the Brazilian government. Additionally, the gang claimed responsibility for the theft of personal details from over 420,000 customers of cannabis retailer Stiizy.
While ransomware and extortion attacks have alarmingly increased in recent years, recent data suggests a strategic shift: victim ransom payments substantially decreased in 2024 as more businesses opted not to give in to demands.
Though authorities have successfully disrupted several notorious ransomware groups, including LockBit and Radar, hackers themselves have increasingly become targets, experiencing breaches and internal sabotage. Consequently, Everest is not alone in becoming a victim as well as perpetrator in cybercrime’s evolving landscape.
