REvil Ransomware

REvil ransomware targets networks for Point of Sale systems

Researchers with Symantec’s Threat Intelligence team observed REvil ransomware operators in the act of scanning one of their victim’s network Point of Sale (PoS) servers. REvil (also known as Sodinokibi) is a Ransomware-as-a-Service (RaaS) operation known to breach corporate networks using exploits, exposed remote desktop services, spam and hacked Managed Service Providers. After accessing the…