The REvil ransomware gang has said that they will auction over 1TB of data stolen from Grubman Shire Meiselas & Sacks, the New York-based entertainment law firm, as this data allegedly contains the “dirty” secrets of a number of celebrities. REvil claimed that the contents involve sex scandals, drugs, and treachery.
It has been reported that REvil said they will begin the auction on July 1 by noting that the first round will contain information from Nicki Minaj, Mariah Carey, and LeBron James.
However, the price for each dataset is $600,000.
As per the report, two days later, REvil plans to auction information belonging to Bad Boy Ent. Hold. Inc, Universal, and MTV. The first has a starting price of $750,000, while the other sets are to be sold for $1M each.
On the other hand, REvil will allow a single entity to purchase the full contents for $42,000,000. The currency requested for the auction is Monero (XMR).
REvil may auction data allegedly stolen from a number of high profile celebrities https://t.co/oQxZUlLc9a — Cointelegraph (@Cointelegraph) June 24, 2020
The gang, also known as Sdinokibi, left a warning for law firm head, Allen Grubman:
“Mr. Grubman, you have a chance to stop that, and you know what to do.”
“Stolen data also contains cases of bribery celebrity by Democratic Party, sexual harassment by top politicians, the envy of celebrity for each other.”
Brett Callow, the threat analyst and ransomware expert at malware lab Emsisoft, commented:
“As REvil obtained (and published) relating to Lady Gaga, it’s likely that they were able to obtain documents relating to other celebrities too. Whether the documents really do contain details of sex and political scandals is impossible to say. REvil could simply be making a bogus claim in the hope of upping the amount that people will bid.”
Thus, he added:
“Even if the ransom is paid, they’ll simply receive a pinky promise that the data will not be used or sold – and that pinky promise is being made by a (very) bad faith actor.”