REvil ransomware shuts down again after Tor sites were hijacked

Lawrence Abrams reports:

The REvil ransomware operation has likely shut down once again after an unknown person hijacked their Tor payment portal and data leak blog.

The Tor sites went offline earlier today, with a threat actor affiliated with the REvil operation posting to the XSS hacking forum that someone hijacked the gang’s domains.

Read more on BleepingComputer.

Forum post by 0_neday

Forum post by 0_neday
Forum posts by 0_neday on Russian language forum announce explain that REvil’s servers have been compromised and 0_neday is pretty much ducking for cover. Images: DataBreaches.net

 

 

About the author: Dissent

Comments are closed.