Security News > 2020 > November > Sodinokibi/REvil ransomware gang pwns British housing biz via suspected phishing attack
A social housing provider in Norwich, England, has said it was hit with the Sodinokibi ransomware following what it assumes was a successful phishing attack.
"Whilst the investigation is still going on we can confirm that the incident was caused by ransomware, known as Sodinokibi, via a suspected phishing attack," said Flagship in a statement on its partially pwned website.
Threat analyst Brett Callow of ransomware recovery firm Emsisoft told The Register that not paying the Sodinokibi/REvil gang's ransom demands is the best bet.
"Agreeing with Callow, Jake Moore, a cybersecurity specialist from Slovakian infosec firm ESET, told The Register:"Regardless of how quickly a company responds to a ransomware attack, data will be encrypted and effectively lost.
Under their Sodinokibi moniker, the gang also took down foreign exchange firm Travelex, contributing to the financial firm collapsing into administration this summer.
News URL
Related news
- Australian Organisations Targeted by Phishing Attacks Disguised as Atlassian (source)
- JPCERT shares Windows Event Log tips to detect ransomware attacks (source)
- Free Sniper Dz Phishing Tools Fuel 140,000+ Cyber Attacks Targeting User Credentials (source)
- Ransomware attack forces UMC Health System to divert some patients (source)
- DOJ, Microsoft seize 107 domains used in Russia's Star Blizzard phishing attacks (source)
- Underground ransomware claims attack on Casio, leaks stolen data (source)
- Casio confirms customer data stolen in a ransomware attack (source)
- GitHub, Telegram Bots, and ASCII QR Codes Abused in New Wave of Phishing Attacks (source)
- Schools bombarded by nation-state attacks, ransomware gangs, and everyone in between (source)
- Astaroth Banking Malware Resurfaces in Brazil via Spear-Phishing Attack (source)