Everything to know about REvil, the group behind a big ransomware spree
July 7, 2021 – Article posted on Fortune
A ransomware attack on business software company Kaseya has been blamed on REvil, a suspected Russia-based hacking group that has been linked to several other major breaches.
This supply chain attack, which started last Friday, hit many companies and organizations, including Sweden’s largest supermarket chain Coop and schools in New Zealand. To gain access to the victims, the hackers exploited a bug in the IT management software of Kaseya.
In June, the FBI said REvil was behind the massive cyber attack that shut down the operations of JBS the world’s biggest meat supplier. Although JBS said it was able to regain control of its computer systems, it paid a $11 million ransom to “mitigate any unforeseen issues related to the attack and ensure no data was exfiltrated.”
This article explores the threat actor REvil, including what it is, the group’s motivations, previous attacks and more. Tony Cook, ransomware negotiator and head of threat intelligence at GuidePoint Security, spoke with Fortune to provide additional context about REvil.
Read More HERE.