Latest REvil news

REvil hacker behind Kaseya ransomware attack gets 13 years in prison

Yaroslav Vasinskyi, a Ukrainian national, was sentenced to 13 years and seven months in prison and ordered to pay $16 million in restitution for his involvement in the REvil ransomware operation.
- Bill Toulas
- May 02, 2024
- 10:44 AM
- 2
Ransomware gang threatens to release stolen Medibank data

A ransomware gang that some believe is a relaunch of REvil and others track as BlogXX has claimed responsibility for last month's ransomware attack against Australian health insurance provider Medibank Private Limited.
- Sergiu Gatlan
- November 07, 2022
- 12:50 PM
- 0
The Week in Ransomware - October 21st 2022 - Stop the Presses

Cybersecurity researchers did not disappoint, with reports linking RansomCartel to REvil, on OldGremlin hackers targeting Russia with ransomware, a new data exfiltration tool used by BlackByte, a warning that ransomware actors are exploiting VMware vulnerabilities, and finally, our own report on the Venus Ransomware.
- Lawrence Abrams
- October 21, 2022
- 06:29 PM
- 2
Ransom Cartel linked to notorious REvil ransomware operation

Threat analysts have connected the pieces that link the Ransom Cartel RaaS (ransomware-as-a-service) to the REvil gang, one of the most notorious and prolific ransomware groups in recent years.
- Bill Toulas
- October 18, 2022
- 05:49 PM
- 0
The Week in Ransomware - May 6th 2022 - An evolving landscape

Ransomware operations continue to evolve, with new groups appearing and others quietly shutting down their operations or rebranding as new groups.
- Lawrence Abrams
- May 06, 2022
- 06:27 PM
- 0
Conti, REvil, LockBit ransomware bugs exploited to block encryption

Hackers commonly exploit vulnerabilities in corporate networks to gain access, but a researcher has turned the table by finding exploits in the most common ransomware and malware being distributed today.
- Ionut Ilascu
- May 03, 2022
- 05:34 PM
- 0
REvil ransomware returns: New malware sample confirms gang is back

The notorious REvil ransomware operation has returned amidst rising tensions between Russia and the USA, with new infrastructure and a modified encryptor allowing for more targeted attacks.
- Lawrence Abrams
- May 01, 2022
- 02:06 PM
- 0
REvil's TOR sites come alive to redirect to new ransomware operation

REvil ransomware's servers in the TOR network are back up after months of inactivity are now redirecting to a new operation that launched recently.
- Ionut Ilascu
- April 20, 2022
- 05:29 PM
- 0
REvil ransomware member extradited to U.S. to stand trial for Kaseya attack

The U.S. Department of Justice announced that alleged REvil ransomware affiliate, Yaroslav Vasinskyi, was extradited to the United States last week to stand trial for the Kaseya cyberattack.
- Bill Toulas
- March 10, 2022
- 01:23 PM
- 0
The Week in Ransomware - March 4th 2022 - The Conti Leaks

This week's biggest story is the massive data leak from the Conti ransomware operation, including over 160,000 internal messages between members and source code for the ransomware and TrickBot operation.
- Lawrence Abrams
- March 04, 2022
- 06:46 PM
- 0
The Week in Ransomware - January 28th 2022 - Get NAS devices off the Internet

It's been a busy week with ransomware attacks tied to political protests, new attacks on NAS devices, amazing research released about tactics, REvil's history, and more.
- Lawrence Abrams
- January 28, 2022
- 04:57 PM
- 2
Russia charges 8 suspected REvil ransomware gang members

Eight members of the REvil ransomware operation that have been detained by Russian officers are currently facing criminal charges for their illegal activity.
- Ionut Ilascu
- January 15, 2022
- 12:06 PM
- 0
The Week in Ransomware - January 14th 2022 - Russia finally takes action

Today, the Russian government announced that they arrested fourteen members of the REvil ransomware gang on behalf of US authorities.
- Lawrence Abrams
- January 14, 2022
- 06:53 PM
- 1
Russia arrests REvil ransomware gang members, seize $6.6 million

The Federal Security Service (FSB) of the Russian Federation has announced today that they shut down the REvil ransomware gang after U.S. authorities reported on the leader.
- Ionut Ilascu
- January 14, 2022
- 08:51 AM
- 0
FBI: Hackers use BadUSB to target defense firms with ransomware

The Federal Bureau of Investigation (FBI) warned US companies in a recently updated flash alert that the financially motivated FIN7 cybercriminal group targeted the US defense industry with packages containing malicious USB devices to deploy ransomware.
- Sergiu Gatlan
- January 07, 2022
- 01:14 PM
- 2
The Week in Ransomware - December 3rd 2021 - Seizing Bitcoin

For this week's 'Week in Ransomware' article we have included the latest ransomware news over the past two weeks.
- Lawrence Abrams
- December 03, 2021
- 06:34 PM
- 0
FBI seized $2.3M from affiliate of REvil, Gandcrab ransomware gangs

The FBI seized $2.2 million in August from a well-known REvil and GandCrab ransomware affiliate, according to court documents seen by BleepingComputer.
- Lawrence Abrams
- November 30, 2021
- 04:46 PM
- 0
The Week in Ransomware - November 12th 2021 - Targeting REvil

This week, law enforcement struck a massive blow against the REvil ransomware operation, with multiple arrests announced and the seizure of cryptocurrency.
- Lawrence Abrams
- November 12, 2021
- 04:07 PM
- 0
U.S. offers $10 million reward for leaders of REvil ransomware

The U.S. is offering up to $10 million for identifying or locating leaders in the REvil (Sodinokibi) ransomware operation, including $5 million leading to the arrest of affiliates.
- Lawrence Abrams
- November 08, 2021
- 07:11 PM
- 2
US seizes $6 million from REvil ransomware, arrest Kaseya hacker

The United States Department of Justice today has announced charges against a REvil ransomware affiliate responsible for the attack against the Kaseya MSP platform on July 2nd and seizing more than $6 million from another REvil partner.
- Ionut Ilascu
- November 08, 2021
- 01:18 PM
- 0