Ransomware Group
REvil
Also known as: Sodinokibi, REvil/Sodinokibi
Status: inactive • First seen 2019-04 • 1,500+ known victims
REvil pulled off some of the biggest ransomware attacks ever until Russian police shut them down.
Overview
REvil was responsible for major attacks including Kaseya. Russian authorities arrested key members.
Target Industries
Technology, Manufacturing, Legal
How They Attack
- • Supply chain attacks
- • RDP exploitation
- • Phishing
Notable Victims
Kaseya (2021), JBS Foods (2021), Acer (2021)
Is your business exposed?
How to Protect Against REvil
- 1.
Review MSP security
MITRE ATT&CK Techniques
Is your business exposed?
Check if your company data is circulating on the dark web
Free scan • No credit card required