US announces $10 million reward for information on state-backed hackers

Sets up a Dark Web site where tips can be passed on, willing to pay in cryptocurrency

The US State Department has announced a reward of up to $10 million for information that can help identify or locate cyber actors working at the direction of a foreign government and targeting critical infrastructure in the US.

The initiative, which could benefit White Hat hackers, is part of the US Department of State's Rewards for Justice (RFJ) programme that is administered by the Diplomatic Security Service.

The RFJ programme was started in 1984, and has paid over $200 million to more than 100 people who provided helpful information to combat terrorism and resolve threats to US national security.

In a detailed post published on Thursday, the US State Department said that the cyber operations that are reported under the reward programme should be in violation of the Computer Fraud and Abuse Act (CFAA). The activities that constitute as violations under the CFAA are:

• transmitting extortion threats as part of ransomware attacks
• intentional unlawful access (or exceeding authorised access) to a protected computer system in order to collect sensitive information
• intentionally transmitting a malicious programme, code, command or information to cause damage to a protected computer

"Protected computers include not only US government and financial institution computer systems, but also those used in or affecting interstate or foreign commerce or communication," the Department said.

The State Department has set up a Dark Web channel [http://he5dybnt7sr6cm32xt77pazmtm65flqy6irivtflruqfc5ep7eiodiad.onion] where tips can be passed on, accessible through the Tor browser.

Payments may be made in cryptocurrency, the Department said.

In another initiative that aims to thwart cyber operations by threat groups, the US Department of Homeland Security (DHS) and the US Department of Justice (DOJ) launched a new website, named StopRansomware.gov, to serve as a one-stop location for consolidating ransomware resources from all federal government agencies.

It will offer the latest articles, alerts, updates, guidance, and other resources related to ransomware attacks to eliminate the need for people to visit multiple websites for latest information about ransomware threats.

"The Department of Justice is committed to protecting Americans from the rise in ransomware attacks that we have seen in recent years," said Attorney General Merrick Garland.

"Along with our partners in and outside of government, and through our Ransomware and Digital Extortion Task Force, the Department is working to bring all our tools to bear against these threats. But we cannot do it alone. It is critical for business leaders across industries to recognize the threat, prioritize efforts to harden their systems, and work with law enforcement by reporting these attacks promptly."

The new initiatives from the US government come at the time when an increasing number of ransomware attacks are becoming a complex test for US President Joe Biden.

In May, US fuel distributor Colonial Pipeline suffered a massive ransomware attack that crippled fuel delivery in southeastern US states.

The shutdown of the Colonial's system sparked panic, with residents seen lining up at petrol pumps for several hours over fears of fuel shortages.

Last month, Brazil-based JBS, the world's largest meat-packer by sales, also paid $11 million in ransom after a massive attack targeting its computer systems in the US and Australia.

White House press secretary Jen Psaki said earlier this month that President Biden was considering all options for how to respond to ransomware attacks targeting US organisations.

"In terms of operational considerations, obviously it is not in our interest to preview those or preview our punches, as I like to say," Psaki said.

"The president has a range of options, should he determine to take action."