The American nuclear weapons company Sol Oriens has been the victim of a cyber attack by the REVIL ransomware gang, which claims to be auctioning off data stolen during the attack.
Sol Oriens describes itself as an assistant to the "Department of Defense and Department of Energy Organizations, Aerospace Contractors and Technology Companies to run complex projects."
However, the jobs first identified by CNBC correspondent Eamon Javers provide some insight into Sol Orien's operations, who are looking for program managers, consultants and a "Nuclear Weapons Specialist" to work with the National Agency. Nuclear Safety (Nnsa).
REvil claims to have stolen data from Sol Oriens
Last week, REvil ransomware listed companies whose items were auctioned to the highest bidder.
One of the companies is Sol Oriens, where REvil claims to have stolen business data and employee data, including salary information and social security numbers.
As proof that they stole data during the attack, REvil published images of a recruitment review document, payroll documents and payroll report.
As a way of pressuring Sol Oriens to pay the ransom demanded by the threat agent, the ransomware gang threatened to share "relevant documentation and data at military angles (sic) of our choice. "
In a statement shared by Javers on Twitter, Sols Oriens confirmed the cyber attack in May 2021 that affected their network.
"The investigation is ongoing, but we recently found out that an unauthorized person obtained some documents from the systems us."
"These documents are under investigation and we are working with a third-party technology company to determine the range of possible data that may have been involved."
"We have no indication that this incident contains customer-rated or critical information about the safety. "Once the investigation is complete, we are committed to informing individuals and entities whose information is involved."
Like many other ransomware features, REvil's business is believed to be based in Russia. Over the weekend, its leaders G7 issued a statement asking Russia to capture ransomware gangs believed to be operating within its borders.
Source of information: bleepingcomputer.com