Jump to content

Sodinokibi operators demand from Travelex currency exchange $ 6 million

Recommended Posts

On New Year's Eve, REvil ransomware operators (also known as Sodinokibi) attacked the computer systems of the exchange provider Travelex, as a result of which the British banks Lloyds, Barclays, HSBC and Royal Bank of Scotland were unable to process the transactions.

Initially, cybercriminals demanded a ransom of $ 3 million in exchange for encrypted customer data, but now the amount has doubled and amounts to $ 6 million. According to Travelex representatives, the security system blocked the data as a “precaution” immediately after the virus was detected, and the client’s data didn’t were compromised.

“At present, we are blocking the virus and are working to restore our systems to resume normal operation as soon as possible. The Travelex network continues to provide manual currency exchange services, ”Travelex said.

As the BBC reported, citing criminals, the attackers downloaded 5 GB of data about the exchange’s customers and plan to sell them in six days if the exchange does not pay the ransom.

Travelex has partnered with the UK's National Crime Agency (NCA) and the London metropolitan police to conduct a criminal investigation into the incident.



Source: https://www.securitylab.ru/news/503937.php



  • Upvote 1

Share this post

Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Create New...