This led Cable to believe that REvil is purely financially motivated and has no political interests. When Cable reached out toREvil in order to discuss paying the ransom, they reportedly decreased their initial demands by $20 million. As of Tuesday 6 July, following contact by a security architect at cybersecurity consulting firm Krebs Stamos Group, Jack Cable, the group have reduced their ransom demand from Kaseya to $50 million. The group had also hacked Taiwanese computer giant Acer in March, demanding $50 million in ransom. The hackers extorted $11 million from JBS, who managed to resume services afterwards. In June, they were believed to be behind the attack on JBS, the largest meat supplier in the world, which led to some of the JBS operations in North America and Australia being shut down.
REvil, derived from “Ransomware” and “Evil”, has previously been linked to a number of such instances. The website will allow target users or cybersecurity professionals affected by the ransomware attack to upload a copy of the ransom information, which will also include the data ransom amount required by the ransomware attack and.
The group of hackers has been dubbed REvilor Sodinokibi by experts and is believed to be Russia- based. How it works: Ransomwhere is an 'open, crowdsourced ransomware payment tracker' launched by Jack Cable, a former government cybersecurity expert who now works as a security architect for Krebs Stamos Group. Jack Cable is not only a student at Stanford University, but also a security researcher in the Krebs Stamos Group. However, in a large number of similar cases, the victims do not generally publicly divulge that they were the target of such an attack, or whether they have paid the ransom. A Swedish grocery chain, a New Zealand School, a German IT company and two Dutch companies are a few of the known victims. The extent of damages is yet to be known, but the estimated number of businesses affected ranges from 1000-2000, spanning at least 17 countries. Taking advantage of the lightly staffed company due to Fourth of July celebrations in the United States, the hackers bypassed the company’s security, exploiting a zero-day vulnerability.
#Cable stamos ransomwhere software#
Kaseya sells its software to thousands of IT and Managed Service Providers (MSPs), who in turn, serve a number of clients. On 4 July, they demanded-through the dark web- $70 million in cryptocurrency in exchange for the return of the stolen data. ccording to one source, Jack Cable of the cybersecurity-focused Krebs Stamos Group, who spoke to Reuters and revealed he had contacted one of the gangs. Miami-based information technology firm Kaseya was the target of “the largest ever ransomware attack” last weekend, when hackers exploited a bug in the IT Management software of the firm in order to steal a large amount of data on a number of clients using the Kaseya software.
0 kommentar(er)
