Russian-linked cybercriminal group REvil behind JBS meatpacker attack

The beef bags are on display at the Costco store on May 24, 2021 in Novato, California.

Justin Sullivan | Getty Images

The notorious hacker group REvil Group is behind the cyberattack on JBS, according to a source who spoke to CNBC on condition of anonymity. This prompted JBS, the world’s largest meat packer, to shut down.

A cyberattack on the world’s largest meat producer has disrupted meat production in North America and Australia, at one point sparking concerns over the possibility of higher meat prices and insufficient supply during the busy summer grilling season.

REvil – pronounced like the letter “R” followed by the word “evil” – is mostly composed of native Russian speakers. He is also believed to be living in a former Soviet state.

The organization operates a site on the dark web, anachronistically known as Lucky Blog. If the victims do not comply with the requests, the group posts the stolen documents to their blog.

“We know they are most likely protected by Russian intelligence or the Russian government, like most ransomware groups, which has allowed them to flourish over the past 18 months,” said Mark Bleicher of Arete Incident Response, a cybersecurity company that specializes in in negotiations. with hackers, CNBC previously reported.

The company said on Tuesday night that it has made “significant progress in addressing the cyberattack” and that the “vast majority” of the company’s beef, pork, poultry and convenience food factories will remain operational.

White House spokeswoman Karine Jean-Pierre said the Biden administration is engaging directly with the Russian government on this issue, “signaling that responsible states are not harboring ransomware criminals.”

Back to top button