Cybersecurity companies welcome latest REvil news

Russia has announced it has dismantled the prominent hacking group REvil, which carried out a high-profile attack last year on US software firm Kaseya

Russia has announced it has dismantled the prominent hacking group REvil, which carried out a high-profile attack last year on US software firm Kaseya. 

Russia's Federal Security Service (FSB) said in a statement that it had "suppressed the illegal activities" of members of the group during raids on 25 addresses that swept up 14 people. The searches were carried out following an "appeal from the relevant US authorities".

Cybersecurity companies have welcomed the news. Joseph Carson, Chief Security Scientist and Advisory CISO at ThycoticCentrify says: REvil are a well-known ransomware gang that has caused havoc for many organisations around the world so it is unsurprising that they would be a target. Many hackers around the world are using their skills for good and this includes government hackers who work vigorously to defend society from cybercrime, so targeting REvil will likely be a statement that governments will work together to stop cybercriminals at the source.”

Bert Steppé, Senior Researcher, Tactical Defence, F-Secure: "This operation is a positive development for international collaboration, and I hope to see this happening more often. This is how we can defeat well organized cybercrime groups such as REvil."

REvil attacks 

In May 2021, REvil hacked major meat supplier JBS, encrypting its computers and convincing the company to pay $11 million in exchange for a promise to not leak its files to an extortion blog it kept on the dark web. Over the Fourth of July weekend, the group hacked the software company Kaseya, using its connectivity to the larger internet ecosystem to infect more than 1,500 organisations around the world.

In recent months, REvil also claimed hacks of renewable energy supplier Invenergy, PC maker Acer and Apple supplier Quanta Computer. According to data from cybersecurity firm Check Point, it saw 15 attacks carried out by REvil per week over the last two months of 2021. 

Share

Featured Articles

How secure is sensitive data stored in the cloud?

A Cloud Security Alliance (CSA) survey has found 67% of organisations store sensitive data in public cloud environments, but how secure is it?

CYBER LIVE LONDON: Day 2 highlights of the hybrid tech show

We take a look at highlights of the different stages at the Tech Live London show, including insights from Claroty, SalesForce and Oracle

TECH LIVE LONDON: An overview of the hybrid technology show

We take a look at the first day of Tech Live London with insights from technology leaders from companies such as IBM, Microsoft and Vodafone

Does a cashless society mean higher risk of fraud?

Cyber Security

5 minutes with Gary Brickhouse, CISO of GuidePoint Security

Cyber Security

CTO at Passbolt explains the importance of password managers

Application Security