REvil still hasn’t quenched its avaricious appetite. The notorious ransomware gang has attacked computer manufacturing giant Acer, and demanded the largest ransom payout in history, $50 million.
REvil posted evidence of the data leak online which included internal communications and financial balance sheets.
After seizing sufficient sensitive data, REvil delivered their monstrous ransom price demand.
The ransom price of $50 million is the largest to date, Acer will likely do all it can to decrypt its sensitive data without giving in to this outrageous demand, but the Taiwanese computer company only has 8 days to work its magic.
After 8 days, the ransom price will double to $100 million. If that price isn’t paid by the set ultimatum, in the quintessential double extortion style of all ransomware attacks, Acer’s seized sensitive data will be published on the criminal infested dark web.
How did REvil breach Acer?
BleepingComputer was advised that the Revil gang targeted the Microsoft Exchange server managing Acer’s domain. This suggests that the attackers exploited the latest Microsoft Exchange Zero-Day vulnerabilities currently exposing unpatched servers.
Acer’s ransomware attack demonstrates that even the greatest among us overlook gaping vulnerabilities in their ecosystem. Thankfully, not all data breaches have a $50 million price tag.