Ransomware Group That Stole Apple's MacBook Pro Schematics Taken Offline in Multi-Country Operation

[MacRumors]

Back in April, ransomware group REvil attacked Apple supplier Quanta Computer and was able to steal schematics outlining the design of the 14 and 16-inch MacBook Pro models that were announced earlier this week.

The schematics did indeed leak the design of the new machines, and at the time, REvil threatened to release other documents should Apple not pay a ransom fee of $50 million by May 1. The situation fizzled out just days later, and REvil mysteriously removed all documents and extortion threats related to Apple from its website.

We've heard nothing further about REvil's attack on Apple since then, but it turns out there was a multi-country operation underway to take down the ransomware group. According to Reuters, several government agencies teamed up to hack REvil and take it offline this week.

One person familiar with the events said that a foreign partner of the U.S. government carried out the hacking operation that penetrated REvil's computer architecture. A former U.S. official, who spoke on condition of anonymity, said the operation is still active.

REvil's "Happy Blog" that was used to leak stolen documents has been taken offline and is no longer available. The hacker group went offline back in July as well after law enforcement and intelligence specialists were able to hack into REvil's computer network, but it returned last month and servers previously compromised by the government were again used for this second takedown.

REvil was also responsible for a May cyberattack on the Colonial Pipeline that caused gas shortages on the East Coast of the United States.

Article Link: Ransomware Group That Stole Apple's MacBook Pro Schematics Taken Offline in Multi-Country Operation

 

[Rudy69]

I'll assume they sent the money and used that to track them down

 

[Apple_Robert]

Always good to see the bad guys taken down.

 

[jz0309]

One word: good

 

[zakarhino]

"foreign partner of the US government"

So another word for Australia then, the place America sends their cyber operations when it's illegal for them to do something stateside. Goes to show you how quickly Five Eyes will work together when one of their corporate overlords is under threat.

 

[chumps52]

Are these the schematics that MR also decided to post at the time?

 

[Marie.D]

If you come at the King you best not miss. Good riddance.

 

[BarredOwl]

I like this. Shut them down and prosecute the criminals into oblivion.

 

[TheYayAreaLiving 🎗️]

Woah! Caught the criminals. Dang! Should have known they are dealing with 2.1+ trillion company.

 

[goobot]

Woah! Caught the criminals. Dang! Should have known they are dealing with 2.1+ trillion company.

More like dealing with the us government after attacking its power supply

 

[KaliYoni]

So another word for Australia then, the place America sends their cyber operations when it's illegal for them to do something stateside

Or Unit 8200...that's my bet. Don't forget, places like NSO were founded on shakshuka and ice coffee not Vegemite and Fosters.

 

[Analog Kid]

Glad to see them taken down, but I do wish governments would respond the same way to these kinds of attacks on individual citizens. The Colonial Pipeline was a big deal, but arguably the leaked schematics alone don't justify a military style takedown. Attacking thousands of individuals in their own homes though, that should be getting much more attention than PSAs saying don't click links from people you don't know.

 

[ASentientBot]

Neither this nor the Reuters article mention any gang members actually being arrested IRL. Anyone know?

Because if not, surely they'll just restart operations under another name.

 

[alex00100]

Neither this nor the Reuters article mention any gang members actually being arrested IRL. Anyone know?

Because if not, surely they'll just restart operations under another name.

And since they stopped leaking the documents I assume they've been paid and are now set for life.

 

[Daws]

Did they get the schematics to the Polishing Cloth? If so, there will be knockoffs 75% cheaper than Apple's.

 

[Shirasaki]

"foreign partner of the US government"

So another word for Australia then, the place America sends their cyber operations when it's illegal for them to do something stateside. Goes to show you how quickly Five Eyes will work together when one of their corporate overlords is under threat.

People who thinks laws can limit what government can do is just naive in general. They are surprisingly effective from time to time.

 

[zakarhino]

People who thinks laws can limit what government can do is just naive in general. They are surprisingly effective from time to time.

Yep, the laws are for the rest of us, never them.

 

[Dammit Cubs]

Did they get the schematics to the Polishing Cloth? If so, there will be knockoffs 75% cheaper than Apple's.

Apple: "it is imperative that the polishing cloth schematics not be leaked"

 

[california_kid]

Yet, nobody seems to be able to stop the scam calls that say my PC is infected, or my car warranty is ending, or I won a complimentary stay at a 5 star hotel, or there's a suspicious charge on my Amazon account, or I left my garage door open.

...oh wait that last one was my neighbor. Thanks Karl!

 

[InGen]

Sounds like the exact kind of cover story one would publish to save face if they had just paid the ransom and done away with them.

 

[Pakaku]

Did they get the schematics to the Polishing Cloth? If so, there will be knockoffs 75% cheaper than Apple's.

The criminals failed to make a clean getaway

 

[Apleeseed84]

Yet, nobody seems to be able to stop the scam calls that say my PC is infected, or my car warranty is ending, or I won a complimentary stay at a 5 star hotel, or there's a suspicious charge on my Amazon account, or I left my garage door open.

...oh wait that last one was my neighbor. Thanks Karl!

Especially after paying for this with the elite plan!!! I’m always getting more scam now than I did before, 7226 number is working over time with the messages i always forward them haha

 

[falkon-engine]

Pwned.

 

[ChrisA]

Woah! Caught the criminals. Dang! Should have known they are dealing with 2.1+ trillion company.

As best I can tell they were not caught, only their website was taken down.

 

[MrTangent]

As someone else alluded to, the authorities were not after them for messing with Apple, but messing with the energy infrastructure of the United States.