Secretary of State Blinken urged Moscow, not to harbor criminals who commit cyber-attacks.
The FBI has concluded that a hacker group linked to Russia is behind the cyberattack on the meat processing company JBS USA.
“We have linked the attack on JBS to REvil and Sodinokibi, and are taking all possible measures to bring those responsible to justice,” the FBI said in a statement released Wednesday.
“Our efforts remain focused on creating risks and consequences, as well as bringing the guilty cyber entities to justice,” the FBI added.
“Our partnerships in the private sector are of great importance for responding quickly to cyber intrusions, and providing support to victims affected by the actions of our cyber adversaries,” the statement continued.
While the FBI released its findings, US Secretary of State Antony Blinken told CNN en Español that Russia has an obligation to stop cyberattacks and not to “harbor criminal organizations that engage in these attacks.”
Blinken called on Russian leaders to take control of criminal organizations operating on their territory.
“I think any country has an obligation to do everything possible to find these organizations and bring them to justice, including in the case of the attack on the [American fuel pipeline operator] Colonial Pipeline,” Blinken said.
“The organization that is responsible for this attack, its leaders were in Russia, are in Russia, so I think that Russia has an obligation to do everything to prevent this from continuing,” the head of American diplomacy said.
He added that while the United States and other countries need to strengthen their defenses, the international community needs “the countries of the world to make commitments not to harbor the criminal organizations that are engaged in these attacks, and then fulfill them.”
Experts say that REvil and Sodinokibi are different names for the same group, and it was previously reported that these hackers are linked to Russia.
According to Forbes magazine, REvil provides criminal groups with malware kits for conducting cyberattacks in exchange for a share of the profits, usually about 20-30 percent.
According to IBM Security X-Force estimates, REvil’s profit from extortion in 2020 was at least $ 81 million. Cybersecurity experts have stated that the amount of the ransom required varies from $ 1,500 to $ 42 million.
The company JBS USA, one of the largest suppliers of meat in the country, on Sunday was subjected to a cyberattack that negatively affected its activities. The company was forced to shut down all beef processing plants in the United States.
The attack came just weeks after the Colonial Pipeline was forced to temporarily shut down after becoming the target of a cyberattack.
The FBI’s confirmation that the cyberattack was carried out by a group linked to Russia came after the White House on Tuesday suggested that the attack was likely carried out from Russia.
White House Deputy Press Secretary Karine Jean-Pierre said the White House is ” working directly with the Russian government on this issue, and is making it clear that responsible states are not harboring ransomware criminals.”
Biden on Wednesday spoke out about Russian ransomware attacks targeting the United States. When asked about possible retaliatory actions against the Russian Federation, Biden said that “he is carefully studying this problem.”
As reported earlier on Wednesday, the White House, the president ordered a strategic analysis of the threat associated with the attacks of ransomware, and intends to discuss the issue of harboring hackers with Russian President Putin during the upcoming summit, the White House said on Wednesday.
“We believe that this issue will be among the topics that the president will discuss with President Putin at the summit,” White House Press Secretary Jen Psaki said.
“President Biden believes that President Putin and the Russian government have a role to play in stopping and preventing these attacks,” she added. Psaki also said that the president ordered an operational strategic analysis to combat the growing threat of hacker attacks using ransomware. According to her, this initiative includes four main areas, including measures to eliminate the relevant infrastructure.