REvil, a ransomware gang, has leaked sensitive documents stolen from a US-based robotics company.
On June 11, it has been reported that the team has started leaking confidential data belonging to Symbotic LLC.
The report noted:
“You do not want to speak with us and you probably think that we will not publish your data. We are already publishing.”
However, the cybercriminal group stated that they had created a website and paid for the hosting for a year, as they threatened to make the robotics company’s data visible for “a very long time in public.”
It has been analyzed that leaked data includes employee names, addresses, SSNs, salary details, non-competition agreements, and more. The group reportedly asked for both Bitcoin (BTC) and Monero (XMR) to cover the ransom payment.
Cyble, the cybersecurity research team, has said that the attack may have occurred in the first week of June.
Ransomware gang REvil has begun to leak sensitive info from a US-based robotics company https://t.co/XPbMxGSlwd — Cointelegraph (@Cointelegraph) June 12, 2020
Founded in 2007, Symbotic LLC has a workforce of approximately 1,000 employees., as they develop software and robotics solutions for supply chain manufacturers, distributors, and retailers.
Brett Callow, the threat analyst at malware lab Emsisoft, commented:
“Ransomware attacks continue to be a serious problem, and that’s because companies continue to pay ransoms. The only way to stop attacks is to make them unprofitable and that means companies must improve their security so as not to be in the position of needing to pay ransoms. Too often, attacks succeed only because of subpar security, and that needs to change.”
Callow has said that it sounds like the ransomware gang may not be planning to auction the robotics company’s data, as that should not be taken as a 100% confirmed fact.
Thus, he further said that REvil could act unpredictably at any time.