Russia-affiliated cybercriminals REvil accountable
According to a source who spoke to CNBC on condition of anonymity, the well-known hacker collective REvil Group was behind the cyber attack on JBS. This caused JBS, the world’s largest meat packaging company, to cease operations.
The attack on the world’s largest meat packer disrupted meat production in North America and Australia and temporarily raised concerns about the potential for soaring prices and insufficient supply during the busy summer barbecue season.
REvil – pronounced like the letter “R” followed by the word “evil” – consists mainly of Russian native speakers. It is also believed to be based in a former Soviet state.
The organization operates a site on the dark web anachronistically known as the “Happy Blog”. If victims do not comply with the demands, the group posts stolen documents on their blog.
“We know that they are most likely protected by Russian intelligence or the Russian government, as are most ransomware groups, which has made them flourish in the past 18 months,” says Marc Bleicher of Arete Incident Response, one of the negotiators specialized cybersecurity firm with criminal hackers, CNBC previously said.
Packages of beef cuts will be on display at a Costco store in Novato, California on May 24, 2021.
Justin Sullivan | Getty Images
As of Tuesday evening, the company said it had made “significant strides in solving the cyberattack” and that the “vast majority” of the company’s beef, pork, poultry and ready-to-eat meal operations will start operations on Wednesday.
White House spokeswoman Karine Jean-Pierre said the Biden government is in direct contact with the Russian government on the matter and “with the message that responsible states do not harbor ransomware criminals”.
– CNBC’s Eamon Javers contributed to this report.