In recent years, the rapid spread of misinformation and disinformation has become a commonplace strategy, employed by various political parties seeking to sway public opinion, or by business rivals and even celebrities attempting to undermine competitors. However, the stakes are even higher in the digital world, particularly in the realm of cybersecurity, where malicious tactics and disinformation can have far-reaching consequences.
A recent example sheds light on a unique and troubling trend within the cybersecurity space—one that involves ransomware gangs not only deploying malicious software, but also spreading fake news to gain a competitive edge. In a striking case, Europol, the European Union’s law enforcement agency, recently found itself at the center of a controversy involving the spread of false information.
A few days ago, Europol issued a Telegram-based notification claiming it would offer a substantial reward of $50,000 for information leading to the capture of the criminals responsible for the Qilin ransomware malware. This malware, known for its ability to lock files and demand a ransom from victims, has become a growing concern in the world of cybersecurity.
However, in a twist that has left many puzzled, Europol later issued a statement denying the authenticity of the initial message. The law enforcement agency clarified that it had never announced any reward for information regarding the Qilin gang, and more importantly, the Telegram channel from which the news originated was a scam. Europol emphasized that it does not operate Telegram channels linked to aliases such as “Haise” or “XORacle” and that its official communications can be found on recognized platforms like Instagram, LinkedIn, X (formerly Twitter), Bluesky, YouTube, and Facebook.
This episode highlights a darker side of the cybercriminal landscape, where misinformation is weaponized not just to deceive but to gain leverage in a highly competitive and secretive industry. According to a freelance researcher Mary D’Souza associated with a UK based security firm, this kind of tactic is not uncommon in the world of cybercrime. Cybercriminals, or even rival hacking groups, may deliberately spread fake news to damage the reputation of other gangs, sabotage their operations, or simply gain an upper hand in the highly lucrative world of ransomware.
Such strategies aren’t just about disinformation for disinformation’s sake—they are calculated moves designed to destabilize and dismantle rival groups. By planting false narratives, rival gangs can sow confusion, distrust, and fear among the members of the targeted group. This, in turn, undermines the gang’s unity and confidence, ultimately leading to fragmentation or, at the very least, a significant reduction in the threat they pose. The end result? A decrease in competition, making it easier for the group behind the disinformation to dominate the field.
The ripple effects of this incident have extended to online discussions, particularly on platforms like Reddit. A thread discussing the issue raised several intriguing questions, with some users speculating that the origin of the fake announcement could be tied to a larger geopolitical struggle. Two respondents argued that a China-based hacking group might be behind the disinformation campaign, disguising itself as a Russian-funded cybercriminal organization that was linked to the infamous WannaCry ransomware attack. This theory, while speculative, illustrates the complex web of actors and motivations at play in the cybercrime world, where allegiances are murky and the lines between fact and fiction are often blurred.
In the end, this incident serves as a reminder of just how multifaceted the threat landscape has become. Cybercriminals are no longer simply concerned with stealing data or extorting victims; they are also engaged in psychological warfare, manipulating public perception, and exploiting the media—both traditional and digital—in order to strengthen their position. As the lines between genuine threats and disinformation continue to blur, it becomes increasingly difficult for both the public and law enforcement agencies to separate fact from fiction in the battle against cybercrime.
Join our LinkedIn group Information Security Community!
