Imperial Market Advertise Here Hidden Links

Lion Attackers List Stolen Documents On Dark Web, Extend Payment Deadline

The attackers who hit Australian drinks manufacturer Lion using the REvil Windows ransomware appear to have decided to give the company a little more time to decide on whether to pay the ransom they have demanded. Security sources have told iTWire that the attackers had posted a list of documents stolen from Lion on the dark web and given the company five days from the date of publication, which appears to be Thursday, Australian time.

On Wednesday, iTWire reported that the attackers had given Lion until 19 June to pay up, based on a draft web page that had not been sent live. The sources said the list of documents included the company's financial information and also personal information of its clients.

Lion first announced on 9 June it had suffered a cyber attack and since then has provided regular updates about the incident. The last update was on 15 June. REVil, which is also known as Sodinokibi, attacks systems running Microsoft's Windows operating system.

It is one of the growing number of ransomware packages that first exfiltrates files on a victim's system and then encrypts them on-site. A ransom note is then generated, with instructions provided as to how payment can be made, generally in cryptocurrencies.

If the victim does not pay by the deadline, then files are slowly leaked on the dark web in small amounts as a bargaining tactic. REvil recently started another way of making money off the data it steals, in the event that the ransom is not paid. It puts up the data for auction. iTWire contacted the company for comment on Thursday morning.

A spokesperson said in a text message that beyond confirming that it was the victim of a cyber attack, caused by ransomware, Lion was not in a position to provide any further comment.

Share this article

  • The Deep Web
  • Cryptocurrencies
  • Darknet Markets
  • Cybersecurity & ...
  • Editor's Picks
While the dark web offers a haven for criminals
We’ve seen an ugly trend recently of tech news
Data breaches are almost always a catastrophic
"The City of Knoxville is aware that the threat
The threat actor behind the Sodinokibi (REvil)
A database of 384,319 BMW car owners in the U.K.
Attackers who used the Nefilim ransomware, that
A Winnipeg woman has been sentenced to six years
SQL databases allegedly stolen from 945 websites
  • 1
  • 2
  • 3
Submarine   Hidden Links   Onion Scanner


Visit Our Friends

Subscribe to Our Newsletter

Enter your email to receive our monthly newsletter!
We use cookies to improve our website. By continuing to use this website, you are giving consent to cookies being used. More details…