The Federal Bureau of Investigation has seized the notorious RAMP cybercrime forum, a platform widely used to advertise malware, hacking services, and ransomware operations.
Both RAMP’s Tor site and its clearnet domain now display a seizure notice confirming the FBI’s action.
According to the notice, the operation was carried out in coordination with the United States Department of Justice, including prosecutors from Florida and the DOJ’s cybercrime division. The forum’s domain name servers have also been switched to official FBI seizure servers, indicating full law-enforcement control.
RAMP was one of the last major forums that openly allowed ransomware promotion, making it a key hub for cybercriminals to recruit affiliates and trade access to compromised networks. With the seizure, authorities may now have access to sensitive user data such as emails, IP addresses, and private messages — information that could lead to arrests, especially for threat actors with poor operational security.
One alleged former RAMP operator publicly confirmed the takedown on another hacking forum, stating that law enforcement had seized control of the platform. The FBI has declined to comment further, and no formal press release has been issued so far.
RAMP was launched in 2021 after other Russian-language forums banned ransomware ads following increased pressure from Western authorities after the Colonial Pipeline ransomware attack. Over the years, it became closely associated with major ransomware groups before finally being taken offline.
If this article helped you, please consider supporting our work. Every small contribution keeps Abijita.com independent and running.
