Your Lion beer plagued by REvil ransomware, hackers demand $1 Million ransom in Monero Cryptocurrency


Australian Beverage giant Lion impacted by REvil ransomware, hackers demand about $1 Million ransom in Monero Cryptocurrency

This is the second time the company has faced a ransomware attack in the week. The lion is a beverage and food company that operates in Australia and New Zealand, and a subsidiary of Japanese beverage giant Kirin. It produces and markets a range of beer, wine, cider, RTDs and spirits, as well as dairy and other beverages.

Previously we saw the beverage company was targeted by the REvil ransomware affected their systems and its beer service disrupted. This time the attackers asked the company for a ransom of $800,000, to be paid in Monero. The attackers said if the lion fails to send this amount before June 19, the group will double the ransom to $1,600,000.

Lion currently employs 7,000 workers. Its 2015 revenue was $ 5.6 million, according to figures shown by Wikipedia. However, the company was providing regular updates on its official website with the latest on June 15th, after the second attack, the spokesperson from the company said that they are not in a position to provide any further comment.

Speaking with Cointelegraph, Brett Callow, threat analyst, and ransomware expert at malware lab, Emsisoft, said: “Ransomware groups frequently create backdoors which, unless remediated, provide them with access to the target network after the initial encryption event.”

Callow also spoke about another recent case where REvil targeted an insurance company. The gang maintained post-attack access to the company’s network and was able to monitor its response to the incident. They were even able to access emailed transcripts of telephone conversations.

Post-incident, companies need to rebuild their networks and infrastructure rather than simply decrypting their data or restoring it from backups. This is the only way to eliminate the possibility of a second attack.

Callow added

The REvil group has also simultaneously attacked the companies that are a well-known Canadian accounting firm, Goodman Mintz LLP, licensed real estate broker Strategic Sites LLC, and ZEGG Hotels & Store, a duty-free store.

However, the services of the beverage company have put on hold, the experts are waiting for the further statement of the company to end the matter. For more news on tech and cybersecurity stay tuned at Android Rookies by subscribing to our newsletter from here


About Author

Be Ready for the challenge

Notify of
Inline Feedbacks
View all comments