Australian Beverage Giant Faces Monero Ransom Demand of Nearly $1M – Cointelegraph

June 18, 2020 By admin

Another ransomware attack has hit the Australia-based drinks manufacturer, Lion. This is the second attack on the company in less than one week. The cybercriminals behind the attack are threatening to double the ransom amount if Lion does not pay by the specified date. The currency of choice for the particular attack is Monero (XMR).

A report published by The Sydney Morning Herald on June 18 said that Lion’s staff were informed that the attack had disrupted its IT infrastructure.

Initially, REvil has asked for a ransom of $800,000, to be paid in Monero. If Lion fails to send this amount before June 19, the group will double the ransom to $1,600,000.

Second ransomware attack in June against Lion

The first attack suffered by the Australian beverage giant was on June 9. Since then, the company has provided a number of updates on its official website, with the latest published on June 15. 

Lion reportedly contacted a multinational professional services company, Accenture, seeking help in their recovery efforts.

Further details on the second attack were not disclosed as of press time. In a statement provided to news outlet iTWire, a spokeswoman of Lion commented: 

“We have confirmed that Lion was the victim of a cyber attack, caused by ransomware. We are not in a position to provide any further comment.”

Modus operandi of REvil in its ransomware attacks 

Speaking with Cointelegraph, Brett Callow, threat analyst and ransomware expert at malware lab, Emsisoft, said:

“Ransomware groups frequently create backdoors which, unless remediated, provide them with access to the target network after the initial encryption event.”

Callow also spoke about another recent case where REvil targeted an insurance company.