Alleged Ukrainian member of REvil Ransomware Gang extradited to US

Yaroslav Vasinskyi (22) is believed to be part of the REvil Ransomware gang that was behind multiple ransomware attacks against the United States including the Kaseya supply chain attack. A…

REvil/Sodinokibi Ransomware: Origin, Victims, Prevention Strategies

This post is also available in: Danish Cyberattacks have become a part of our reality, but have you ever wondered what might happen if your company gets targeted? You probably…

A Tough Week for REvil Ransomware

The REvil/Sodinokibi ransomware (AKA Sodin) is a great example of Ransomware-as-a-Service, a type of cybercrime where two parties collaborate on the hack: the code writers who create the ransomware, and…

Authorities arrest REvil ransomware operators in Kuwait and Romania

The total number of arrests made concerning Sodinokibi/REvil and GandCrab ransomware is now seven. Europol launched a multi-agency operation to catch REvil ransomware operators (Ransomware-Evil) based on their findings of…

REvil Ransomware’s Tor Sites Were Hijacked

REvil/Sodinokibi is highly evasive and upgraded ransomware, which uses a special social engineering move, as the ones who spread it will threaten to double the ransom if not paid within…

A Backdoor Was Added by the REvil Ransomware Developers in an Attempt to Cheat Affiliates

The REvil ransomware operators may have been hijacking ransom negotiations, and cutting their affiliates of payments. As explained by my colleague Elena, REvil is a highly evasive and upgraded RaaS…

REvil ransomware gang is back after disappearing amid Kaseya attack

By Waqas The official website of the REvil ransomware gang (aka Sodinokibi) which is accessible through the Tor browser is back online after going offline since July 2021. This is…