Yaroslav Vasinskyi (22) is believed to be part of the REvil Ransomware gang that was behind multiple ransomware attacks against the United States including the Kaseya supply chain attack. A…
Category: Sodinokibi
A Tough Week for REvil Ransomware
The REvil/Sodinokibi ransomware (AKA Sodin) is a great example of Ransomware-as-a-Service, a type of cybercrime where two parties collaborate on the hack: the code writers who create the ransomware, and…
Authorities arrest REvil ransomware operators in Kuwait and Romania
The total number of arrests made concerning Sodinokibi/REvil and GandCrab ransomware is now seven. Europol launched a multi-agency operation to catch REvil ransomware operators (Ransomware-Evil) based on their findings of…
REvil Ransomware’s Tor Sites Were Hijacked
REvil/Sodinokibi is highly evasive and upgraded ransomware, which uses a special social engineering move, as the ones who spread it will threaten to double the ransom if not paid within…
A Backdoor Was Added by the REvil Ransomware Developers in an Attempt to Cheat Affiliates
The REvil ransomware operators may have been hijacking ransom negotiations, and cutting their affiliates of payments. As explained by my colleague Elena, REvil is a highly evasive and upgraded RaaS…
REvil ransomware gang is back after disappearing amid Kaseya attack
By Waqas The official website of the REvil ransomware gang (aka Sodinokibi) which is accessible through the Tor browser is back online after going offline since July 2021. This is…