15 Notorious Ransomware Groups 'Retire', but Experts Warn: Stay Vigilant
Fifteen notorious ransomware groups, including Scattered Spider and Lapsus$, have announced their retirement from criminal activities. The groups, responsible for high-profile breaches like those on MGM Resorts and Marks & Spencer, claim they have achieved their goals and wish to enjoy their ill-gotten wealth or focus on legitimate IT work.
The groups, which have been behind several headline-making breaches, announced their withdrawal on the underground forum Breachforums. They claimed to have amassed considerable wealth during their malicious operations and now wish to enjoy their 'golden parachutes'. Some members even expressed a desire to work on improving IT systems privately.
However, security professionals caution that organizations should not let their guard down. They treat this 'retirement' as a pause rather than an end, as such statements are a common tactic among cybercrime gangs to avoid prosecution while regrouping. The groups' announcement also referred to members already in custody, vowing to retaliate against authorities and work toward their release.
Fifteen ransomware groups have announced their retirement, but security professionals advise continued vigilance. The groups, which have caused significant damage in the past, insist their campaigns were not about extortion but about exposing insecure systems. Despite their claims, organizations must remain prepared for potential future threats.
