30 abril 2021

An interview with REvil’s Unknown

Editor’s Note: It’s undeniable that ransomware is the big moneymaker in cybercrime right now. And some groups looking to make a fortune are aggressively pushing the boundaries by raising their demands to seven or eight-figure sums, threatening to release data online if payments aren’t made, and targeting hospitals and other vulnerable organizations.

One group that has gained prominence for its audacious and lucrative tactics is REvil, also known as Sodinokibi. The group runs a ransomware-as-a-service operation, in which developers sell malware to affiliates who use it to lock up an organization’s data and devices. 

In addition to publishing victim data online when companies don’t pay demands, REvil has attracted attention for trying to extort then-President Donald Trump and claiming to bring in $100 million in revenue from their operations. And according to an REvil representative that uses the alias “Unknown,” the group has big plans for 2021.

Some of Unknown’s claims, like affiliates with access to ballistic missile launch systems and nuclear power plants, seem outlandish—until you read reports that make them seem eerily plausible. The Record is not able to verify the assertions. Unknown talked to Recorded Future expert threat intelligence analyst Dmitry Smilyanets recently about using ransomware as a weapon, staying out of politics, experimenting with new tactics, and much more.

https://therecord.media/i-scrounged-through-the-trash-heaps-now-im-a-millionaire-an-interview-with-revils-unknown/
http://dlvr.it/RynSFz