A $50,000 bounty supposedly issued by Europol to help track down administrators of the Russian-based ransomware gang Qilin was actually just a Telegram scam.
News of the fictitious bounty fooled several cybersecurity news outlets into reporting that a reward would be paid to anybody who could give Europol information on two Qilin administrators known as Haise and XORacle.
The pair supposedly “coordinate affiliates and oversee extortion activities,” and Europol wanted information that “directly leads to the identification or location of these administrators.”
However, Europol confirmed to SecurityWeek that the supposed reward was a “scam” and that the agency never announced the bounty.
Not only that, the only social media channels run by Europol can be found on Facebook, Instagram, Bluesky, X, YouTube, and LinkedIn.
SecurityWeek notes that a rival gang may have created the fake bounty to damage a rival’s reputation, steal their affiliates, or create paranoia within the gang.
Qilin attacks national security for crypto
Qilin is a prominent ransomware gang that extorts crypto, including bitcoin and monero, through its ransomware-as-a-service.
In March this year, Qilin claimed to have stolen and sold data including “private correspondence, personal information, decrees etc,” from the Ukrainian Ministry of Foreign Affairs.
Read more: LockBit ransomware gang sends ‘friendly advice’ to new FBI Director Kash Patel
It’s also targeted hospitals in London and published stolen patient data, claiming that it shouldn’t be blamed for its actions.
One Qilin member told BBC reporter Joe Tidy, “We are very sorry for the people who were suffered because of it. Herewith we don’t consider ourselves guilty and we ask you don’t blame us in this situation.”
The group instead claimed it attacked hospitals in retaliation for the UK’s role in an unspecified war.
Qilin reportedly doesn’t attack countries within the Commonwealth of Independent States, including Russia, Kyrgyzstan, Belarus and Moldova, and its affiliates take home 80% of ransom payments below $3 million.
Got a tip? Send us an email securely via Protos Leaks. For more informed news, follow us on X, Bluesky, and Google News, or subscribe to our YouTube channel.
Source: https://protos.com/europol-bounty-for-russian-crypto-ransomware-gang-wasnt-real/
