Security News > 2020 > November > Sodinokibi/REvil ransomware gang pwns British housing biz via suspected phishing attack
A social housing provider in Norwich, England, has said it was hit with the Sodinokibi ransomware following what it assumes was a successful phishing attack.
"Whilst the investigation is still going on we can confirm that the incident was caused by ransomware, known as Sodinokibi, via a suspected phishing attack," said Flagship in a statement on its partially pwned website.
Threat analyst Brett Callow of ransomware recovery firm Emsisoft told The Register that not paying the Sodinokibi/REvil gang's ransom demands is the best bet.
"Agreeing with Callow, Jake Moore, a cybersecurity specialist from Slovakian infosec firm ESET, told The Register:"Regardless of how quickly a company responds to a ransomware attack, data will be encrypted and effectively lost.
Under their Sodinokibi moniker, the gang also took down foreign exchange firm Travelex, contributing to the financial firm collapsing into administration this summer.
News URL
Related news
- Massive PSAUX ransomware attack targets 22,000 CyberPanel instances (source)
- North Korean Group Collaborates with Play Ransomware in Significant Cyber Attack (source)
- North Korean govt hackers linked to Play ransomware attack (source)
- Midnight Blizzard Escalates Spear-Phishing Attacks On Over 100 Organizations (source)
- City of Columbus: Data of 500,000 stolen in July ransomware attack (source)
- Windows infected with backdoored Linux VMs in new phishing attacks (source)
- Columbus, Ohio, confirms 500K people affected by Rhysida ransomware attack (source)
- Critical Veeam RCE bug now used in Frag ransomware attacks (source)
- Halliburton reports $35 million loss after ransomware attack (source)
- New Ymir ransomware partners with RustyStealer in attacks (source)