Friday, January 15, 18:39
Home security Sodinokibi ransomware: Scans networks for PoS devices

Sodinokibi ransomware: Scans networks for PoS devices

Sodinokibi ransomware

One of the most productive and successful ransomware gangs in the world found a new trick to attack victims her. Scans networks to locate point of sale (PoS) devices. The ransomware team behind this technique is the well-known Sodinokibi or REvil. This group appeared in April 2019 and has become one of the most devastating ransomware gangs in the world.

Great and famous Companies have fallen victim to Sodinokibi ransomware, with attackers demanding a ransom of hundreds of thousands of dollars or even millions in order to give the decryption key.

In many cases, victims feel they have no choice but to pay ransom.

Now, her researchers Symantec discovered that the hackers of Sodinokibi ransomware use a new technique in their campaigns. Before encrypting victims' hacked networks, they scan them for PoS devices.

This technique can be used for making more money from other campaigns. But hackers can also use them directly data payment to attack accounts or to sell underground Forums.


The Sodinokibi gang uses it regularly theft and exploitation techniques data of victims. Along with his hackers Maze of ransomware, publish information stolen from victims who do not pay the ransom.

“Scanning systems for PoS software is interesting, as it is not something we see happening alongside ransomware attacks", Wrote the Symantec researchers.

"It will be interesting to see if it was just something that happened in this campaign, or if it is going to be a new tactic to be adopted by ransomware gangs."

The new scanning technique for PoS Appliances was detected in a targeted Sodinokibi campaign food and health care services and sectors. The victims are large companies that can pay large sums of money.

Whatever the reason Sodinokibi team is looking for credit cards and payment information, the fact that it is one of the largest ransomware gangs does not change.

"One thing is clear hackers who use Sodinokibi are evolved and specialized "And there is no sign that they will stop their malicious activities soon," the researchers said.

Sodinokibi ransomware exploits vulnerabilities to gain access to networks of victims. Therefore, one of the best ways to protect an organism is to tactic information of systems of.


Please enter your comment!
Please enter your name here

Digital Fortress
Digital Fortress
Pursue Your Dreams & Live!


Android: How to see which apps have access to your site

It's no secret that smartphone apps have access to many permissions - if you let them. It is important to make sure ...

Canon lets you take pictures from space

Instead of releasing new cameras for CES 2021, Canon is doing something different: It lets you take pictures from space ....

Wikipedia vs Big tech: Who fights misinformation?

As Election Day turned into US Election Week, Facebook, Twitter and YouTube were trying to prevent ...

Tesla: It is called to recall cars due to problematic screens

The touch screen in some Tesla cars seems to have a problem, which could ...

Ransomware is responsible for half of all data breaches in hospitals

Almost half of the data breaches committed in hospitals and the wider healthcare sector are due to ransomware attacks, ...

Astronomers have just found the oldest oversized black hole

A quasar was discovered in a dark corner of space - over 13,03 billion light-years away - and contains a ...

What are the best and most affordable 5G phones for 2021

The market will soon be flooded with mid-range 5G devices. Everything that happens will be really exciting: you will be able to ...

Verified Twitter accounts in a cryptocurrency scam with the name of Elon Musk violated!

Lately, hackers have been violating verified Twitter accounts in a cryptocurrency giveaway scam, in which the name of the CEO is used ...

Classiscam: Fraudsters "fake" brands and deceive users of European markets!

Dozens of criminal gangs publish fake ads in popular online markets, to attract unsuspecting users to "fraudulent" commercial sites or phishing ...

iOS 14.4: Displays a notification for repairs with non-genuine cameras

Starting with the iPhone 11, Apple has added a notification to iOS that tells the user when the device has a ...