US officials recover $2.3M in crypto from Colonial Pipeline ransom

Published at: June 7, 2021

Officials with a United States government task force have seized more than $2 million in crypto used to pay for ransom following an attack on the Colonial Pipeline system. 

In a Monday press conference, Deputy Attorney General Lisa Monaco said that the task force “found and recaptured” millions of dollars worth of Bitcoin (BTC) connected to Russia-based DarkSide hackers — the majority of the $4.4 million funds originally paid. A warrant filed with the U.S. District Court for the Northern District of California shows that authorities recovered 63.7 BTC, worth roughly $2.3 million at the time.

Monaco said this action was the first major operation in the task force’s mission to investigate, disrupt and prosecute ransomware attacks:

“Today, we turned the tables on DarkSide. [...] By going after the entire ecosystem that fuels ransomware and digital extortion attacks, including criminal proceeds in the form of digital currency, we will continue to use all of our tools and all of our resources to increase the cost and the consequences of ransomware attacks.”

DarkSide’s attack on the major pipeline last month caused fuel shortages for many people in the United States. Monaco said the company quickly notified authorities of the problem and ransom demand, leading to the task force’s involvement.

In the same press conference, FBI Deputy Associate Director Paul Abatte said officials seized the funds from a BTC wallet used to pay the ransom for the cyberattack. However, at the time of publication, the method used to recover the crypto funds is unclear. A CNN report said that officials could have identified DarkSide as the ones responsible and used their network to trace the funds soon after the attack, but this method has had mixed success with ransomware groups.

Tags
Related Posts
Crypto in the crosshairs: US regulators eye the cryptocurrency sector
In her monthly Expert Take column, Selva Ozelli, an international tax attorney and CPA, covers the intersection between emerging technologies and sustainability, and provides the latest developments around taxes, AML/CFT regulations and legal issues affecting crypto and blockchain. Lately, news headlines are focused on regulators’ concerns over the lack of investor protections in the cryptocurrency market, which has ballooned to more than $2 trillion, and the possible risks to financial stability. National security agencies across the administration of United States President Joe Biden are grappling with high-profile cases of cryptocurrencies playing a role in ransomware attacks, intellectual property espionage, sanctions …
Regulation / Oct. 24, 2021
Digital intelligence must overcome challenges to solving crypto crimes
While the value of cryptocurrencies has varied wildly in the last year, this has not diminished crypto’s attractiveness to criminals. Many of them are moving their illegal activities underground and outside the view of law enforcement. Because of the public nature of most blockchains, however, this rapid movement shouldn’t be a major concern to law enforcement agencies. With the right tools and training, following the proceeds of crypto-enabled crime is actually not as difficult as it may seem. However, intelligence agencies must have a cryptocurrency investigation plan that includes the right tools to lawfully collect digital evidence and the properly …
Technology / Aug. 20, 2021
Why the BitMEX charges could be bad news for DeFi
In the aftermath of criminal charges against BitMEX, the crypto community is debating whether the decentralized finance sector is also set to face the wrath of regulators. On Oct 1, the U.S. Commodity Futures Trading Commission announced charges against three BitMEX executives for violating the Bank Secrecy Act (BSA) due to the exchange’s allegedly weak anti-money laundering and know-your-customer (KYC) policies. DeFi protocols, including Decentralized Exchanges (DEXs) have made a virtue of having minimal AML and KYC procedurs. However many now wonder if DEXs are also obliged to comply with the BSA, even though most projects seek to decentralize ownership …
Blockchain / Oct. 2, 2020
Biden hints at possible cybersecurity arrangement with Russia over ransomware attacks
United States President Joe Biden implied he made some progress in addressing ransomware attacks on critical infrastructure after speaking with Russian President Vladimir Putin. Following a Wednesday summit in Geneva, Biden said he had spoken with Putin on the issue of cybersecurity, the U.S. president making it clear his opinion was certain areas of critical infrastructure were off limits for attacks — whether the targets were in Russia or the United States. Biden said the meeting had a positive tone, but he had told Putin “the United States will respond to actions that impair our vital interests or those of …
Regulation / June 16, 2021
The IRS offers a $625,000 bounty to anyone who can break Monero and Lightning
The United States Internal Revenue Service has offered a bounty of up to $625,000 to anyone who can break purportedly untraceable privacy coins such as Monero (XMR) as well as trace transactions on Bitcoin’s (BTC) Lightning Network. The official proposal, published last week, says the IRS will accept submissions in the form of working prototypes until Sept. 16. If accepted, applicants will receive an initial payment of $500,000. This grant will allow applicants to develop their prototype into a working concept over the next eight months. Once the pilot test is completed and approved by the government, a further $125,000 …
Technology / Sept. 11, 2020