Rising instances of digital ransomware (using bitcoin) & how to deal with them

by the Crystal analytics team

Jun 16, 2021

Tech advancements have simplified our lives. Developments, however, have left us vulnerable to external digital threats. Ransomware is widely considered to be one of the most common forms of online threats and a modern-day menace to our local and global security systems.

Ransomware is malware that requires a victim to pay money to access files that have been encrypted. Because of transfer efficiency, along with its borderless nature, it has become extremely common for cybercriminals to demand ransomware in the form of cryptocurrency.
Ransomware can have a majorly negative impact on the lives of people. On an individual level, cybercriminals making use of ransomware can block access to work files, affecting everyday workflows. On a higher level, ransomware can halt the services of major business entities.

A primary example of this was witnessed last month when the world's largest meat processing company, JBS, was hit by ransomware and had to pay $11 million in ransom. Unfortunately, such incidents are becoming increasingly common. Experts believe that ransomware is likely to cost the global economy as much as $6 trillion during 2021. This article discusses the rising instances of digital ransomware using bitcoin and analyzes ways to deal with this danger.

Increasing numbers and sophistication levels of ransomware attacks

The total number of ransomware attacks during 2020 increased by nearly 485% compared to 2019. This mammoth increase was helped because the COVID-19 pandemic has compelled firms to adopt an operating model based on distributed teams. Employees working from home has made it more difficult for tech departments to keep track of various devices and networks.

In addition, ransomware is also evolving and “improving in quality” as an illicit activity tool. Cybercriminals are now making use of advanced techniques such as social engineering and impersonation. These techniques enable them to get unrestricted access to an individual’s data.

There have been several cases of ransomware that have caused global disruption in recent years. One of the most dangerous ransomware attacks took place in the year 2017. The WannaCry ransomware infected computers in more than 150 countries around the world.
This attack focused on computers using the Microsoft Windows platform and lasted for four days. The cybercriminals behind this attack demanded cryptocurrency payments between $300 and $600. It was estimated that the attack impacted over 200,000 computers and cost hundreds of millions of dollars. The attack did not spare any industry and impacted the operations of critical sectors, including healthcare and utilities. See Crystal’s analysis of the case.

A similar ransomware attack hit the healthcare system of Ireland in May 2021, with hospital operations partially halted for over six days. The scale of these recent attacks on healthcare systems highlights the risks faced by individuals and businesses in a highly connected world.

In response, the US pushes for more scrutiny with terrorism priority

With the well-known case involving Colonial Pipeline infiltration in the US in May 2021, where the oil pipeline's operations were impacted by a ransomware attack with a compromised password, the company had to shut down all operations due to the attack.
The DarkSide exploitation impacted nearly 12,000 gas stations throughout the country. The firm operating the pipeline had to shell out $5 million to the cybercriminals behind the attack, although the authorities have now recovered a portion of this amount with the help of analysis.

This attack also had a major impact on the way cybercrime is classified in the US. As a result of this attack, the US government decided to classify ransomware attacks in the same priority list as terrorism. It is likely that other leading economies will also follow suit in the near future.

Tracking and analyzing ransomware transactions involving crypto

To have any chance of recovering illicitly gained ransomware funds involving cryptocurrencies, it becomes important for individuals and companies to track ransomware payment transactions. Specialist companies provide services for transaction tracking, including Crystal Blockchain.

Such firms can track cryptocurrency transactions and follow the addresses and connections to figure out the exact location of the funds that have been stolen or paid to the cybercriminals. The open transparency of public blockchain facilitates this analysis.

The German chemical distribution company Brenntag was also hit by a DarkSide ransomware attack in May 2021. The amount paid was revealed to be approximately $4.4 million of bitcoin. Crystal was able to track the payments made by examining each potential address/ cluster.

All these payments were directed to a ransomware address linked to the DarkSide marketplace. Based on this information, along with information collated by other bitcoin analytics services, the US DOJ authorities were able to seize certain servers owned by DarkSide to retrieve the funds.

This case indicates the true value of being able to track transactions accurately and efficiently.

This Crystal platform image shows movements of stolen funds into & out of a DarkSide wallet

Ransomware continues to trouble individuals and businesses around the world. However, governments and regulatory bodies are now taking a tough stance against such activities. It is likely that regulatory bodies like the Securities and Exchange Commission (SEC) will look to formulate robust laws aimed at stopping ransomware attacks. Another ray of hope has been the emergence of analytics software such as the Crystal platform, experts in blockchain monitoring.

Solutions like Crystal Blockchain’s platform have the ability to track ransomware attacks and payments involving crypto by analyzing public blockchain ledger entries. In addition, such software also offers additional benefits for crypto transactions and connections risk mitigation.

Visit www.crystalblockchain.com for more info about ransomware threats & transaction tracking

Similar news

The Evolution of Cryptocurrency Regulations

The important phases in the development of rule-making around digital asset transactions

by the Crystal analytics team

Jul 14, 2021

A guide to avoiding common crypto compliance pitfalls

Adhering to crypto compliance requires an understanding of crypto and traditional financial industry tendencies. Avoiding these five common mistakes will help your business grow.

by Marina Khaustova

Jul 06, 2021

10 Biggest Crypto Exchange Hacks In History

The cryptocurrency exchange security breaches that shook the world

by the Crystal analytics team

Jun 30, 2021

Darknet interactions & bitcoin — a crypto activity analysis for May 2021

An analysis of current darknet entities and their interactions with other entity types in Q1 2021, in comparison with historical dynamics over the last four years.

by the Crystal analytics team

Jun 17, 2021

NFTs: the good, the bad, and the artful scammers

How NFTs could become a new opportunity for crypto-criminals - if we’re not careful…

by the Crystal analytics team

May 19, 2021

Ukrainian Cyber Police Department Now In Collaboration with Crystal Blockchain

The first meeting between the Ukrainian Cyber Police Department and Crystal Blockchain, was a discussion of ambitious goals as well as exchanges of experience in cybercrime mitigation

by the Crystal communications team

May 18, 2021

Geography of Bitcoin Transaction Dynamics Report 2014 — Q1 2021

The Crystal team regularly explores bitcoin and crypto market dynamics, to see how fund flows have been affected by external factors like financial fluctuations or increasing regulations. We update these dynamics quarterly on our interactive map and in our report (PDF attached).

by the Crystal analytics team

Apr 28, 2021

5 steps to identifying potentially suspicious entities on blockchains

How to prevent accepting risky transactions and avoid becoming a victim of scams and criminal activities. These five steps will help you avoid these potential pitfalls.

by the Crystal communications team

Apr 21, 2021

Crystal Expands Blockchain Coverage & Crypto AML Compliance Solutions

Regulations from the Financial Action Task Force (FATF) and the 6th Anti-Money Laundering Directive (6AMLD), mean that cryptocurrency services, and businesses exposed indirectly to cryptocurrencies, need to get compliant. By integrating Crystal analytics alongside existing AML/CFT procedures businesses can manage crypto risk and comply with new legislation.

by the Crystal communications team

Apr 07, 2021

Stolen crypto withdrawal and transfer patterns

An analysis of cryptocurrency transactions made by crypto-criminals post-theft between 2015 and 2020, with a look at the fund flow patterns made using this stolen crypto.

by the Crystal analytics team

Feb 23, 2021

Peer-to-Peer (P2P) Transaction Volume Analysis 2019-2020

At the V20 Summit in November 2020, the co-chair of the FATF’s Virtual Asset Contact Group, Sandra Garcia, stated that regulatory requirements for P2P exchanges may emerge in 2021 to combat AML, as they come under the same hood as VASPs. The FATF is currently collecting data on P2P exchanges to allow their guidelines to reflect P2Ps (likely to be added June 2021).

by the Crystal analytics team

Feb 03, 2021

Ukraine challenges regulatory hurdles as blockchain industry advances

Crystal Blockchain spoke with the deputy minister of the Ukrainian Ministry for Digital Transformation, Alex Bornyakov, about blockchain tech and regulatory developments happening in Ukraine, and how its partnership with Crystal advances that purpose.

by the Crystal communications team

Jan 14, 2021

Crystal Blockchain End of Year Report 2020

A number of industries were put on pause this year due to the COVID19 pandemic. However, regulatory guidelines for the cryptocurrency markets continued to be a priority internationally in 2020, and legislation in the blockchain industry is ever more imminent. This, along with an increasing amount of cryptocurrencies being utilized for suspicious activities, has meant that Crystal Blockchain’s risk assessment and transactions and connections monitoring solution for virtual asset service providers (VASPs) has been an increasingly important tool to combat ML.

by Marina Khaustova

Dec 21, 2020

FICO and Crystal Blockchain of Bitfury Group Announce Partnership To Deliver Real-Time Cryptocurrency Risk Management

FICO, a global analytics leader, and Crystal Blockchain of Bitfury Group ("Crystal"), a leading digital currency analytics company, announced a partnership to provide cryptocurrency risk management and monitoring services. With an increasing number of financial service providers looking to expand services into the crypto market, the joint offering will help to protect new business models and effectively connect the worlds of virtual and fiat currency for the benefit of their customers.

by the Crystal communications team

Dec 16, 2020

Understanding the FATF red flag indicators for crypto service providers

When do VASPs need to employ the services of crypto AML and KYT compliance software companies to adhere to the FATF “red flag risk indicator” guidelines?

by the Crystal analytics team

Dec 08, 2020

Bitlicense and Other Crypto Licenses Around The World 2020

What types of cryptocurrency licenses are available internationally today?

by the Crystal analytics team

Nov 16, 2020

Security Breaches & Fraud Involving Crypto Still High Despite Tech Development

It’s ten years since the first official cyber-terrorist attack of a crypto exchange, and despite technological advances, most cryptocurrency entities have not yet been able to develop sufficiently reliable security systems to minimize security breaches on their platforms.

by the Crystal analytics team

Nov 12, 2020

Crypto payments provider B2BinPay in collaboration with Crystal

Global cryptocurrency payments provider, B2BinPay, is working in collaboration with Crystal analytics to strengthen their cryptocurrency compliance procedures.

by the Crystal communications team

Oct 15, 2020

The Importance of Knowing Your Cryptocurrency Transaction (KYT)

As traditional banks and financial institution become more directly involved with cryptocurrencies, they need to consider KYT as part of their KYC compliance due diligence

by the Crystal analytics team

Sep 21, 2020

Bitfury Crystal partners with PARSIQ to power their blockchain monitoring

World-leading blockchain monitoring system, PARSIQ will integrate Crystal Blockchain’s transaction risk scoring capabilities to power their AML and KYT processes for VASPs.

by the Crystal communications team

Sep 03, 2020

The importance of Ripple monitorization on the Crystal platform

Ripple (XRP) cryptocurrency released in 2012 stands behind two other digital assets only in terms of market capitalization, as of August 2020. Ripple is the sixth digital asset to be supported by the Crystal Blockchain analytics platform, adding to the current list of bitcoin (BTC), Bitcoin Cash (BCH), Ethereum (ETH, as well as ERC20 and ERC721), Litecoin (LTC), and Tether (USDT).

by the Crystal analytics team

Aug 19, 2020

2020 Report on Fund Sources for Dormant Bitcoin Addresses

It's been 11 years since the genesis Bitcoin block was created. During these last 11 years, bitcoin has been used for payments, exchange trading, and as a store of value. Not all mined bitcoins move much after their creation, however.

by the Crystal analytics team

Aug 04, 2020

Bitfury’s Crystal to assist the Ukrainian Ministry of Digital Transformation

Bitfury’s Crystal analytics to assist the Ukrainian Ministry of Digital Transformation

by the Crystal communications team

Jul 24, 2020

Crypto Regulation Continues To Progress Despite COVID-19 Pandemic

The Crystal Blockchain analytics team continues its quarterly update to the International Bitcoin Flows Analytics Report that was first compiled back in September 2019. This update takes into account fund flows from 2013 through the first six months of 2020. The report also considers the progress that has been made with the FATF guidelines and “travel rule”, despite the current COVID-19 pandemic that has seen many processes slowed down or stalled.

by the Crystal analytics team

Jul 14, 2020

Bitfury Group Brings Crystal Blockchain to India with HumanSTAR*

India's Strategic Advisory Firm, HumanSTAR* to offer Crystal Blockchain Analysis for Indian Law Enforcement Agencies

by the Crystal communications team

Jul 07, 2020

Upbit and Crystal partner to strengthen exchange’s compliance

South Korea-based crypto exchange Upbit will use Crystal analytics to strengthen AML compliance procedures

by the Crystal communications team

Jun 19, 2020

11 Years Later: Is Satoshi Nakamoto Finally Moving Bitcoin Funds?

More than ten years after the launch of the Bitcoin Blockchain, coins that were mined on February 9, 2009 have just started moving. Yesterday, 50 BTC left the address 17XiVVooLcdCUCMf9s4t4jTExacxwFS5uh. They were initially received in block number 3,654, created on February 9, 2009 - exactly one month after bitcoin mining started.

by the Crystal analytics team

May 22, 2020

Darknet Use and Bitcoin — A Crypto Activity Report by Crystal Blockchain

This report by Crystal Blockchain analytics reviews the use of bitcoin by darknet entities. The report analyzes darknet interactions with exchanges and other entities throughout the first quarter of 2020 and compares it to historical darknet activity from the past three years.

by the Crystal analytics team

May 19, 2020

Historical Data Shows Crypto Exchange Dynamics Influenced By Regulatory Changes

To investigate the effects of new regulation on the cryptocurrency market, as well as the extent virtual asset service providers will be affected by the changes, the Crystal™ Blockchain analytics team has issued an updated report on the historical international flow of bitcoin between cryptocurrency exchanges.

by the Crystal analytics team

May 05, 2020

2019 Crypto Compliance: Year in Review

2019 was a year of preparation and standardization for the cryptocurrency industry, as regulators around the world came together to enforce tangible legislation impacting the ecosystem. In the U.S., SEC Chairman Jay Clayton spoke candidly to a Senate Committee in December, informing them that the SEC is taking a measured yet proactive regulatory approach to crypto that will both foster innovation and capital formation while protecting investors and U.S. markets.

by Marina Khaustova

Dec 27, 2019

2019 Darknet Interactions and Bitcoin — A Crypto Activity Report by Crystal Blockchain

The Crystal analytics team have compiled a detailed report based on investigations into darknet interactions using bitcoin, and how regulation is changing trends.

by the Crystal analytics team

Dec 15, 2019

The Year in Review for Crystal Blockchain Analytics — 2018

The Crystal™ analytics platform is the all-in-one blockchain analytics tool for law enforcement bodies, capital market companies and financial organizations. This software provides a comprehensive view of the public blockchain ecosystem and uses advanced analytics and data scraping to map cryptocurrency transactions and related entities and to reveal suspicious funds and participants.

by Marina Khaustova

Jan 24, 2019