The US State Department is offering a reward of up to $10 million for information connecting the Clop ransomware gang or any other malicious cyber actors targeting US critical infrastructure to a foreign government.
“Do you have info linking CL0P Ransomware Gang or any other malicious cyber actors targeting U.S. critical infrastructure to a foreign government? Send us a tip. You could be eligible for a reward,” reads a message in the official State Department’s Rewards for Justice program Twitter account.
Clop (Cl0p) is a variant of the CryptoMix ransomware family first spotted in 2019 that operates on a ransomware-as-a-service (RaaS) model. The malware is widely believed to have emerged from Russian cybercriminal circles and is frequently leveraged by several Russian affiliates, among them the FIN11 financially motivated hacking group.
Over the past few years, the Clop ransomware gang gained notoriety for compromising high-profile organizations in various industries worldwide using multilevel extortion techniques. In 2023, the group claimed responsibility for the GoAnywhere zero-day attacks that affected more than a hundred organizations across the world, and the MOVEit global mass hack that impacted US government agencies, oil and gas giant Shell, UK’s media regulator Ofcom, British integrated communications provider Adare SEC, and many other organizations.