Asteelflash, a number one French electronics manufacturing companies firm, has suffered a cyberattack by the REvil ransomware gang who’s demanding a $24 million ransom.
Asteelflash is a world-leading French electronics manufacturing companies (EMS) firm that focuses on the design, engineering, and printing of printed circuit boards.
Whereas Asteelflash has not publicly disclosed an assault, BleepingComputer discovered this week a pattern of the REvil ransomware that allowed entry to the Tor negotiation web page for his or her cyberattack.
This web page reveals that the REvil ransomware group, also called Sodin and Sodinokibi, was initially demanding a $12 million ransom, however because the time restrict expired, the ransom doubled to $24 million.
The Tor fee web site confirmed a quick dialog between the REvil risk actors and Asteelflash. As a part of this dialog, the risk actors shared a file named ‘asteelflash_data_part1.7z’ that was shared to show that recordsdata had been stolen in the course of the assault. Metadata of a number of the shared recordsdata present that Asteelflash workers authored them.
At this level, the dialog between the 2 events has stalled and there aren’t any particulars in regards to the firm’s intentions relating to the ransom.
BleepingComputer has contacted Asteelflash a number of instances however has not obtained a response to our inquiries. LeMagIT had extra success, an Asteelflash consultant stating for them that the “the incident is being evaluated.”
Neither BleepingComputer nor LeMagIT may affirm whether or not the assault was profitable in encrypting recordsdata on affected methods.
For greater than a 12 months, ransomware gangs began to steal information from their victims earlier than locking the computer systems. This enables them to extort victims by promising to not publish or promote the knowledge.