Home » REvil

REvil

Bad Actors Innovate, Extort & Launch 9.7M DDoS Attacks

In March 2022 we released our 2H 2021 Threat Intelligence Report. The report covers worldwide distributed denial-of-service (DDoS) attack activity during 2021—particularly during the second half of the year. As always, it’s chock-full of DDoS attack statistics, trends, and insights from our elite NETSCOUT ATLAS Security Engineering and Research Team (ASERT). Key findings include: DDoS attacks continued to exceed pre-pandemic levels. During the second half of 2021, cybercriminals launched approximately 4.4 million DDoS attacks, bringing the total number of DDoS attacks in 2021 to 9.75 million. These attacks represent a 3 percent decrease from the record number set during the height of the pandemic but continue at a pace that’s 14 percent above pre-pandemic levels. DDoS extortion and ransomw...

5000 Attack Attempts in 22 Countries Due to REvil Ransomware Campaign

Image sourced from Forbes. On 2 July 2021, it became known that the REvil ransomware gang perpetrated a large attack against Managed Service Providers (MSPs) and their clients around the world. The far-reaching attack affected firms across 22 countries, including South Africa, the UK, Canada, Argentina, Mexico and Spain, amongst others. This led to thousands of companies becoming potential victims of ransomware. At the moment of writing, Kaspersky reports that their researchers have already observed over 5000 infection attempts in Europe, North and South America. REvil Ransomware Group REvil (aka Sodinokibi) is one of the most prolific ransomware-as-a-service (RaaS) operators that first surfaced in 2019, and made numerous headlines in the past few months due to the targets they hit and the...

SA Firms Struck by Massive $70-Million Ransomware Attack

Sourced from Kaspersky Companies in 17 countries, including South Africa, the UK, Canada, Argentina, Mexico and Spain, have been struck by a mass ransomware attack exploiting multiple previously unknown vulnerabilities in IT management software made by Kaseya, an American software company that develops software for managing networks, systems, and information technology infrastructure. REvil – The Alleged Threat Actors Cybersecurity researchers are claiming that the attacker is a Russia-based hacking group who call themselves REvil. They are also known as “the Sodinokibi ransomware gang”, according to global cybersecurity and digital privacy firm, Kaspersky. The group has demanded a ransom of $70-million to be paid in Bitcoin. Kaspersky claims that it has identified some threats from REvil’...

Apple Reportedly Targeted in $50 Million Ransomware Attack

Apple Inc has reportedly suffered a ransomware attack at the hands of REvil operators. The hackers have revealed that the tech company has until 1 May to pay the ransom or risk losing confidential drawings and gigabytes of personal data. “Our team is negotiating the sale of large quantities of confidential drawings and gigabytes of personal data with several major brands,” says REvil operators. “We recommend that Apple buy back the available data by May 1.” According to The Record, the REvil gang asked for a $50 million ransom demand, similar to the sum they requested from laptop maker Acer last month. Denis Legezo, Senior Security Researcher for Kaspersky’s Global Research and Analysis Team, says “REvil ransomware has been known since 2019 and it can both encrypt data and steal it. I...