The U.S. Department of State’s Rewards for Justice (RFJ) program is offering a reward of up to $10 million for information leading to the identification or location of any person who, while acting at the direction or under the control of a foreign government, participates in malicious cyber activities against U.S. critical infrastructure in violation of the Computer Fraud and Abuse Act (CFAA).
Certain malicious cyber operations targeting U.S. critical infrastructure violate the CFAA. Violations of the statute include transmitting extortion threats as part of ransomware attacks; intentional unauthorized access to a computer or exceeding authorized access and thereby obtaining information from any protected computer; knowingly causing the transmission of a program, information, code, or command, and as a result of such conduct, intentionally causing damage without authorization to a protected computer. Protected computers include not only U.S. government and financial institution computer systems, but also those used in or affecting interstate or foreign commerce or communication.
Commensurate with the seriousness with which we view these cyber threats, the Rewards for Justice program has set up a Dark Web (Tor-based) tips-reporting line to protect the safety and security of potential sources. Possible relocation and rewards payments by cryptocurrency may be available to eligible sources.
Anyone with information on foreign malicious cyber activity against U.S. critical infrastructure should contact the Rewards for Justice office via our Tor-based tips-reporting channel at:
(Tor browser required)