Hackers suspected to be behind a mass extortion attack that affected hundreds of companies worldwide late on Sunday demanded US$70 million to restore the data they are holding ransom, a posting on a dark Web site said.
The demand was posted on a blog typically used by the REvil cybercrime gang, a Russia-linked group that is counted among the cybercriminal world’s most prolific extortionists.
The gang has an affiliate structure, occasionally making it difficult to determine who speaks on the hackers’ behalf, but Allan Liska of cybersecurity firm Recorded Future said the message “almost certainly” came from REvil’s core leadership.
The group has not responded to an attempt by Reuters to reach it for comment.
REvil’s ransomware attack, which the group executed on Friday, was among the most dramatic in a series of increasingly attention-grabbing hacks.
The gang broke into Kaseya, a Miami-based information technology firm, and used their access to breach some of its clients’ clients, setting off a chain reaction that quickly paralyzed the computers of hundreds of firms worldwide.
An executive at Kaseya Ltd said the company was aware of the ransom demand, but did not immediately return further messages seeking comment.
About a dozen countries were affected, research published by cybersecurity firm ESET said.
In at least one of the cases, the disruption spilled out into the public domain when the Swedish Coop grocery store chain had to close hundreds of stores on Saturday because its cash registers had been knocked offline as a consequence of the attack.
Earlier on Sunday, the White House said that it was reaching out to those affected by the outbreak “to provide assistance based upon an assessment of national risk.”
The impact of the intrusion is still coming into focus.
Those hit included schools, small public-sector bodies, travel and leisure organizations, credit unions and accountants, Sophos Group PLC chief information security officer Ross McKerchar said.
McKerchar’s company was one of several that had blamed REvil for the attack, but Sunday’s statement was the group’s first public acknowledgment that it was behind the campaign.
Ransom-seeking hackers have tended to favor more focused shakedowns against single, high-value targets like Brazilian meatpacker JBS SA, whose production was disrupted last month when REvil attacked its systems.
JBS said it ended up paying the hackers US$11 million.
Liska said he believed the hackers had bitten off more than they could chew by scrambling the data of hundreds of companies at a time, and that the US$70 million demand was an effort to make the best of an awkward situation.
“For all of their big talk on their blog, I think this got way out of hand,” he said.
MULTIFACETED: A task force has analyzed possible scenarios and created responses to assist domestic industries in dealing with US tariffs, the economics minister said The Executive Yuan is tomorrow to announce countermeasures to US President Donald Trump’s planned reciprocal tariffs, although the details of the plan would not be made public until Monday next week, Minister of Economic Affairs J.W. Kuo (郭智輝) said yesterday. The Cabinet established an economic and trade task force in November last year to deal with US trade and tariff related issues, Kuo told reporters outside the legislature in Taipei. The task force has been analyzing and evaluating all kinds of scenarios to identify suitable responses and determine how best to assist domestic industries in managing the effects of Trump’s tariffs, he
TIGHT-LIPPED: UMC said it had no merger plans at the moment, after Nikkei Asia reported that the firm and GlobalFoundries were considering restarting merger talks United Microelectronics Corp (UMC, 聯電), the world’s No. 4 contract chipmaker, yesterday launched a new US$5 billion 12-inch chip factory in Singapore as part of its latest effort to diversify its manufacturing footprint amid growing geopolitical risks. The new factory, adjacent to UMC’s existing Singapore fab in the Pasir Res Wafer Fab Park, is scheduled to enter volume production next year, utilizing mature 22-nanometer and 28-nanometer process technologies, UMC said in a statement. The company plans to invest US$5 billion during the first phase of the new fab, which would have an installed capacity of 30,000 12-inch wafers per month, it said. The
Taiwan’s official purchasing managers’ index (PMI) last month rose 0.2 percentage points to 54.2, in a second consecutive month of expansion, thanks to front-loading demand intended to avoid potential US tariff hikes, the Chung-Hua Institution for Economic Research (CIER, 中華經濟研究院) said yesterday. While short-term demand appeared robust, uncertainties rose due to US President Donald Trump’s unpredictable trade policy, CIER president Lien Hsien-ming (連賢明) told a news conference in Taipei. Taiwan’s economy this year would be characterized by high-level fluctuations and the volatility would be wilder than most expect, Lien said Demand for electronics, particularly semiconductors, continues to benefit from US technology giants’ effort
‘SWASTICAR’: Tesla CEO Elon Musk’s close association with Donald Trump has prompted opponents to brand him a ‘Nazi’ and resulted in a dramatic drop in sales Demonstrators descended on Tesla Inc dealerships across the US, and in Europe and Canada on Saturday to protest company chief Elon Musk, who has amassed extraordinary power as a top adviser to US President Donald Trump. Waving signs with messages such as “Musk is stealing our money” and “Reclaim our country,” the protests largely took place peacefully following fiery episodes of vandalism on Tesla vehicles, dealerships and other facilities in recent weeks that US officials have denounced as terrorism. Hundreds rallied on Saturday outside the Tesla dealership in Manhattan. Some blasted Musk, the world’s richest man, while others demanded the shuttering of his
RSS