A group of hackers REvil gained access to the data of the American firm Symbotic LLC, which develops SOFTWARE and robotics. Attackers demand a ransom in BTC and XMR.
REvil is known for organizing auctions to sell stolen data on the darknet. According to a June 11 report by REvil, hackers gained access to Symbotic LLC’s data, including the names of the firm’s employees, their residential addresses, social identity codes, income information, anti-competition agreements, and other confidential documents.
The hackers said they have already started publishing this information, as the firm does not want to get in touch. To do this, cybercriminals created a separate website and paid for annual hosting. If Symbotic LLC does not send them a buyout in BTC and XMR, the firm’s data will be publicly available for at least a year.
According to cybersecurity firm Cyble, the attack on Symbotic LLC could have been committed in early June. Emsisoft analyst Brett Callow believes that ransomware attacks are a big problem because companies agree to pay ransom. The only way to stop such attacks is to make them unprofitable.
Companies need to improve their security measures, since most ransomware attacks are successful due to the low level of protection of firms. According to callow, hackers are not going to put the data of Symbotic LLC up for auction, but REvil can act unpredictably and change its decision at any time.
Recall that last month, REvil hackers stole 756 GB of data about celebrities from a law firm, demanding $42 million in XMR, and also threatened to publish compromising material on US President Donald trump.