Some hackers may retain stolen data even after the victim has paid the ransom. Coveware researchers say they have reached these conclusions.
In a renewed extortion campaign, researchers exposed the Sodinokibi ransomware group. Hackers from NetWalker and Mespinoza published the data of firms that paid the ransom. The Conti group sent forged evidence of the deletion of stolen information.
Experts urged not to pay the ransom due to the lack of security guarantees. Coveware also described any cyberattack as data theft, urging victims to inform employees, customers and partners about it.
As reported, a representative of the hacker group behind the spread of the REvil (Sodinokibi) estimated the group’s annual earnings of more than $100 million.
Follow ForkLog’s news on Facebook!