Prague, April 8, 2025 – The Everest ransomware group’s leak site has reportedly been defaced by unknown threat actors, displaying a message that reads, “Don’t do crime CRIME IS BAD xoxo from Prague.” This incident highlights the vulnerability even among cybercriminals.
The defacement of the site, which has since been taken down, was initially reported by Tammy Harper, a senior threat intelligence researcher at Flare. Harper noted that the site is reportedly back online, but the identity of the individuals responsible for the defacement remains unclear.
Such incidents underscore the chaotic nature of the cybercrime landscape, where even established groups like Everest can fall victim to rival hackers. The defacement serves as a reminder of the ongoing risks and challenges within the cybersecurity domain.
The implications of this event may extend beyond mere embarrassment for the Everest group, potentially affecting their operations and reputation in the underground community. As the situation develops, the cybersecurity community will be closely monitoring any further actions from both the Everest group and the unknown attackers.
This incident illustrates the unpredictable dynamics of cybercrime, where the lines between perpetrator and victim can blur significantly.
