  |
Hive was responsible for at least 11 incidents involving U.S. government organizations, schools, and healthcare providers last year. Hive thrived on targeting hospitals. Hive was initially observed in June 2021. During 2021, Hive made headlines when it attacked Europe's largest consumer electronics retailer, MediaMarkt.
The Hive leak site, dubbed "HiveLeaks", was hosted in the dark web and remained stable compared with other leak sites. Any person with access to the TOR URL could access it publicly, as it is not protected by any passwords. To further pressure their victims to pay, affiliates would publish details of the breach and data stolen and use a countdown to add urgency if payments are not met in time (double extortion). Hive server's Application Programming Interface (API) has also been seized by the authorities, indicating a complete takedown of the gang's infrastructure. |