There has been a length in 2021 when the computing global become gripped using fear of a dizzyingly effective hacking group fittingly named REvil — till its website changed into seized by the FBI and its members arrested through Russia’s safety offerings, this is. But like a malevolent curse that simply can’t be dispelled, it now seems the organization’s websites are back online.
If you ignored them the first time around, REvil came to worldwide interest using hacking into numerous high-profile goals, pilfering secret files, then threatening their release unless a ransom was paid. In a notable case, the group stole and published documents from Apple provider Quanta computer, which include a few that spilled the beans on unreleased product designs.
Now, it seems like REvil’s sites on the darknet are again in action. According to Bleeping laptop, REvil’s websites are up and running and full of facts new and old, including a list of preceding hacking victims along with a couple of latest ones. The hacking institution’s domains are accessible through the Tor Browser, which masks URLs to facilitate user privacy.
Samsung confirms hackers stole Galaxy supply code
Protection researchers became aware of the new hobby while tracking the hacking discussion board RuTOR, wherein they saw an advertisement selling REvil’s offerings with a brand new website that redirects to its old area. The group’s updated offerings encompass an apparently stepped forward version of the REvil ransomware, in conjunction with an 80/20 revenue-sharing model.
Does this suggest that the authentic REvil group has someway been resurrected for another round of high-profile hacks and mischief? Well, that’s not absolutely clear. Other than the fact that the institution was gutted by multiple law enforcement investigations around the sector, there are other motives to be suspicious.
For one component, the website’s code is suffering from references to different hacking agencies, which might mean that a distinct malware gang has someway taken control of REvil’s website. Another opportunity is that the new site is a “honeypot” maintained by law enforcement or a few different groups and designed to capture records about potential clients of REvil.
For now, the mystery stays unsolved. But if REvil is returned from the grave — or any other hacking institution has decided to take it over — it doesn’t bode particularly well for the future, especially considering the havoc resulting from hacking group LAPSUS$ in current months. If you want to live secure, you may start by ensuring you’re protected via one of the best antivirus apps available and avoid clicking suspicious links on the net or in your emails.