'We Expect to Leak the Data': Reddit Hackers Demand $4.5 Million and API Pricing Changes But Say They Doubt The Company Will Pay The ransomware group BlackCat (also known as ALPHV) is threatening to release 80 gigabytes of data if Reddit doesn't meet the hackers' demands.

By Madeline Garfinkle

Sharaf Maksumov | Shutterstock
Reddit hackers are demanding $4.5 million and policy changes.

It hasn't been an easy month for Reddit. Last Monday, thousands of Reddit forums went dark in protest against the company's new API pricing that could cause third-party apps that use the platform, like Apollo, to shut down.

Now, Reddit is the target of the hacking group BlackCat (also known as ALPHV), who claim to have stolen 80 gigabytes of data (which they say they will leak if Reddit doesn't pay $4.5 million), the hackers wrote in a dark web post on Saturday, shared by researcher Dominic Alvieri on Twitter.

The ransomware group claims it was behind the February phishing attack on Reddit, where the stolen data came from. A spokesperson for Reddit has confirmed to Entrepreneur that the recent threat by BlackCat relates to the February incident and is "not a new hack."

The spokesperson added that user data such as passwords were not accessed, but the hackers did "gain access to some internal documents, code, and some internal business systems." Reddit did not indicate whether it intends to pay the ransom. BlackCat, however, is "very confident" that Reddit will "not pay any money for their data," the group wrote in the post: "We expect to leak the data."

Related: Amazon Ring Is the Latest Target of Notorious Ransomware Gang

It's not just millions that the hackers are after, either. In addition to the $4.5 million ransom, BlackCat has demanded that Reddit undo the policy changes to its API, which sparked the site-wide protest.

However, some experts are skeptical of the ransomware group's incentive to support the protestors' cause.

"I suspect that ALPHV doesn't actually care about the API pricing," Brett Callow, threat analyst at cybersecurity firm Emsisoft told CNN. "They simply want future victims to see how much ongoing harm they can cause to increase the likelihood of them deciding that payment is the least painful option."

Related: Cyber Attacks Are on the Rise in Hospitals, Incidences Have More Than Doubled in 5 Years

Madeline Garfinkle

Entrepreneur Staff

News Writer

Madeline Garfinkle is a News Writer at Entrepreneur.com. She is a graduate from Syracuse University, and received an MFA from Columbia University. 

Editor's Pick

Related Topics

Business Plans

She Wrote An 'Escape Plan' to Quit Her Job and Move to an Island. Now She's There Generating Nearly $300,000 A Year

"My detailed, step-by-step plan on how I would quit my job and move to a Caribbean island."

Business Plans

How You Can Use the 80/20 Rule to Unlock Success and Maximize Your Impact

Our success is determined by where we focus our efforts.

Business News

Google Is Mass Deleting Accounts This Week — Here's How To Make Sure Yours Is Safe

The company is reportedly removing inactive accounts on December 1.

Science & Technology

Police Issue Warning About iPhone's 'NameDrop' Feature

How to safely manage the iPhone's latest feature and understand how the technology works.

Business Ideas

55 Small Business Ideas to Start in 2023

We put together a list of the best, most profitable small business ideas for entrepreneurs to pursue in 2023.