REvil ransomware is back?
Back in January 2022 we were writing that REvil ransomware servers were seized by FBI and some of cyber criminals behind it have been arrested. However, less than four months later ransomware’s Tor page, “Happy blog”, came back to life.
More surprisingly, REvil posted information about new victims: Visotec Group and Oil-india.com.
It’s unclear whether original REvil operators control the website, is it a new FBI operation (?), or did third party criminals gain control over it?
In any case, it is remarkable that ransomware blog page propose cooperation. Below on the screenshot we can see a message in Russian left by supposedly cyber criminals.
Message says malware has been improved and is ready to be sold in a franchise manner, with 80/20 gain to a client and the ransomware creators. Cyber criminals agree to work only with a “garant” and a deposit of 1 BTC beforehand.
Whether it is the original REvil or it’s a third party hackers, we encourage you to stay vigilant to phishing, do not disclose details of your VPN if you use any and stay cyber secured!
Your data might already be exposed. Most companies find out too late. Let ’s change that. Trusted by 100+ security teams.
🚀Ask for a demo NOW →Q: What is dark web monitoring?
A: Dark web monitoring is the process of tracking your organization’s data on hidden networks to detect leaked or stolen information such as passwords, credentials, or sensitive files shared by cybercriminals.
Q: How does dark web monitoring work?
A: Dark web monitoring works by scanning hidden sites and forums in real time to detect mentions of your data, credentials, or company information before cybercriminals can exploit them.
Q: Why use dark web monitoring?
A: Because it alerts you early when your data appears on the dark web, helping prevent breaches, fraud, and reputational damage before they escalate.
Q: Who needs dark web monitoring services?
A: MSSP and any organization that handles sensitive data, valuable assets, or customer information from small businesses to large enterprises benefits from dark web monitoring.
Q: What does it mean if your information is on the dark web?
A: It means your personal or company data has been exposed or stolen and could be used for fraud, identity theft, or unauthorized access immediate action is needed to protect yourself.