A Backdoor Was Added by the REvil Ransomware Developers in an Attempt to Cheat Affiliates

The REvil ransomware operators may have been hijacking ransom negotiations, and cutting their affiliates of payments. As explained by my colleague Elena, REvil is a highly evasive and upgraded RaaS operation. REvil uses a special social engineering move, making the ones who spread it threaten to double the ransom if not paid within a certain […]

The post A Backdoor Was Added by the REvil Ransomware Developers in an Attempt to Cheat Affiliates appeared first on Heimdal Security Blog.

Read More: https://heimdalsecurity.com/blog/a-backdoor-was-added-by-the-revil-ransomware-developers-in-an-attempt-to-cheat-affiliates/