FinCEN Tied $ 5.2 Billion Transactions to Ransomware Operations

Daniel ZimmermannOctober 20, 2021

0 64 1 minute read

The Financial Crimes Investigation Unit under the US Treasury Department, also known as FinCEN, reported about $ 5.2 billion in ransomware transactions in cryptocurrency.

FinCEN representatives write that this number was obtained after analyzing 2,184 suspicious activity reports filed by US financial institutions over the past decade (from January 1, 2011 to June 30, 2021). While the reports initially identified $ 1.56 billion in suspicious activity, a subsequent study of the ten most common ransomware programs found additional transactions worth about $ 5.2 billion, attributable exclusively to these hack groups.

In total, FinCEN experts identified 177 CVC (“Convertible Virtual Currency”) wallet addresses that were used for payments related to encryptors.

FinCEN report

Although the FinCEN report also contains data on fairly old attacks, most of the investigation focused on the first half of 2021 and analysis of the latest trends. The results of this analysis are the following:

in the first half of 2021, financial institutions filed 635 reports of strange activity related to suspected ransomware activities;
reports mention 458 suspicious transactions worth $ 590 million;
the indicators for the first half of 2021 exceed the indicators for the entire 2020 as a whole, which clearly indicates an increase in the activity of ransomware;
average monthly ransomware transactions in 2021 totalled $ 102.3 million, as
FinCEN detected 68 different variants of such malware active in the first half of 2021;
in the first half of 2021, the most common malware samples were REvil / Sodinokibi, Conti, DarkSide, Avaddon, and Phobos.

Also, FinCEN analysts note several trends in the field of money laundering operations using ransomware. Among them:

using anonymous cryptocurrencies such as Monero;
refusal to reuse wallets so that information security companies cannot identify and track transactions;
using the chain hopping technique to exchange funds for other cryptocurrencies;
cashing out funds on centralized exchanges;
use of mixing services and decentralized exchanges to convert revenue.

The FinCEN report was released shortly after the US Treasury Department announced that it would impose sanctions on any entity that assists ransomware operators in laundering their proceeds. In addition, earlier this week in the United States ended a two-day meeting of representatives of 30 countries, which discussed the fight against ransomware. In particular, the meeting participants agreed that it is necessary to fight against cryptocurrency exchangers, which turn a blind eye to the illegality of what is happening and help criminals to launder and cash out profits.

Let me remind you that we also talked about the fact that The US government has warned agencies about cybersecurity risks for years.

Sending

User Review

0 (0 votes)

Comments Rating 0 (0 reviews)

The Financial Crimes Investigation Unit under the US Treasury Department, also known as FinCEN, reported about $ 5.2 billion in ransomware transactions in cryptocurrency.

User Review

Daniel Zimmermann

Related Articles

Researchers found that employees’ errors are the main cause of cybersecurity incidents and problems

Third-party SDKs secretly collected data from Twitter and Facebook users

Hackers are driven into underground: three major hack forums banned advertising of ransomware

.EXE files infect macOS

Leave a Reply Cancel reply