Sodinokibi Ransomware posts stolen data online & threatens to do it more!

The nasty Sodinokibi ransomware which affected a plethora of corporate firms like CyrusOne & Travelex is undertaking dubious tactics to threaten victims. The culprits behind Sodinokibi Ransomware attacks have published stolen data since the victims did not pay the ransom on time.

The developers of GandCrab ransomware variant did release a public statement in December 2019. They stated that stolen data will be leaked if the ransom was not paid on time. The ransomware culprits are using such devious tactics to intimidate victims & blackmail them for ransom.

What did the developers of Sodinokibi ransomware do?

The miscreants of the nasty ransomware stuck to their statement & posted stolen data on a Russian malware & hacker forum.Links with a size of 337 MB were published, consisting of sensitive files belonging to Artech Information Systems.

Artech Information Systems is a women-owned enterprise. They rank among top  IT staffing organisations in the U.S. However, perpetrators of Sodinokibi aren’t fazed by such companies. They threaten to release more data if the ransom is not paid on time.

What do the Sodinokibi ransomware perpetrators claim to do?

1. They claim that the released data is just the tip of the iceberg.
2. Sodinokibi ransomware developers allege that they have interesting, personal, financial data that is important to the organizations.
3. They will sell the data to third parties if the Sodinokibi culprit’s demands are not met.

Present Scenario of Sodinokibi victim – Artech Company:

1. Artech’s website is currently down
2. It is unclear if their website is non-functional due to Sodinokibi Ransomware attacks.
3. A leading news reporter agency did reach out to the organization for clarifications but there has been no response from Artech.

How should enterprises treat Sodinokibi Ransomware like attacks?

1. Ransomware attacks like Sodinokibi need to be designated as a data breach.
2. Investigations must be transparent & professional cyber security experts must be invited to gauge the impact of ransomware attacks.
3. Enterprises should not conceal such attacks since it might result in customer, employee & company data loss.
4. Another danger of hiding ransomware attacks is the risk of lawsuits & fines.

The devious practice of blackmailing victims by releasing stolen data will soon gain traction. Ransomware developers will surely use this method as a way to extract large ransom amounts & harass the victims. Beware of Sodinokibi Ransomware like attacks by installing a good security product & protect yourself from ransomware.

Hits: 144