Inside the World of Dark Angels: A Look at the Record $75 Million Ransom Paid by a Fortune 50 Company and How the Group Operates

A Fortune 50 company made headlines earlier this year by paying a jaw-dropping $75 million ransom to cyber attackers, shattering all previous records for ransom payments. The beneficiaries of this hefty payout were none other than Dark Angels, a group that has been turning the world of ransomware on its head.

While other companies have paid substantial amounts in the past, such as CNA Financial, JBS, and Caesars Palace, none come close to the $75 million in Bitcoin paid by the undisclosed Fortune 50 company, as reported by Zscaler in its 2024 annual ransomware report, corroborated by Chainalysis.

Dark Angels made their debut in May 2022, targeting high-value entities like S&P 500 companies in various sectors. Their approach involves strategically attacking fewer but more lucrative targets and stealing massive amounts of data, sometimes reaching tens of terabytes. Contrary to common ransomware tactics, Dark Angels often refrain from encrypting data, allowing victims to continue operations without disruption.

However, experts warn that Dark Angels’ success could inspire copycat tactics from other cybercriminal groups, leading to more sophisticated and financially driven ransom demands. Despite their elusive nature, Dark Angels are not invincible, as their data exfiltration methods can be detected and potentially thwarted by vigilant companies.

As the cybersecurity landscape evolves, the battle against ransomware continues to escalate, with Dark Angels representing a formidable yet vulnerable player in this ongoing digital warfare. Stay tuned to see how companies and cybersecurity professionals respond to this growing threat and whether Dark Angels’ reign of terror can be brought to an end.