The hacker group REvil is a headache for new victims. Based in Albuquerque, it is a 50-person company that is discussing security-related projects with the federal government.
Sol Orient, who consults with the US Department of Energy’s National Nuclear Safety Agency, confirmed to CNBC in May that he had noticed a “cybersecurity incident,” and an investigation was underway and law enforcement was notified.
In a statement, the company “recently determined that an unauthorized individual has obtained certain documents from our system. These documents are currently under review and are working with a third-party forensics company. And are involved in determining the range of potential data. “
According to cybersecurity sources, Sol Oriens did not name the attacker or identify it as ransomware, but CNBC learned that the well-known hacker group REvil was the cause of the attack. It was.
A cybersecurity company that saw a document posted on the dark web included an invoice for an NNSA contract, a description of a R & D project managed by a defense and energy contractor in 2021, and a wage list including name and social security. I told CNBC that. The number of employees of Sol Orient.
“There are no current signs that the incident is related to client sensitive or important security-related information,” Sol Oriens said. The company didn’t say whether it paid the attacker a ransom.
Sol Oriens describes itself as a technology research and development company. For example, according to a recent job listing for GlassDoor, the company was looking for a program analyst who could assist the NNSA with a “complex nuclear weapons maintenance program.”
NNSA, an agency within the Department of Energy, is responsible for maintaining the safety, security, and effectiveness of US nuclear weapons stockpiles. We will also work with the US Navy on nuclear propulsion to respond to US radiation emergencies.
A spokesperson for the Ministry of Energy declined to comment. An NSC spokesman declined to comment.
REvil was recently responsible for a ransomware attack on JBS, the world’s largest meat packaging company, and earned a ransom of $ 11 million. In April, REvil stole and published the blueprints from Apple’s supplier Quanta Computer. The attack reportedly demanded a ransom of $ 50 million.
“In a sense, Sol Oriens, LLC is just one of many names,” said cybersecurity firm Intel 471. “There are still no signs that the company was targeted for the work it is doing, rather than another potential payday for the hacker.”
According to screenshots seen by CNBC, REvil threatened to publish Sol Oriens data and documentation on his blog.
Malicious hacker group attacks Sol Oriens with ransomware
Source link Malicious hacker group attacks Sol Oriens with ransomware