Notorious hacker collective REvil Group is behind the cyber attack on JBS, according to a source who spoke to CNBC on condition of anonymity. It caused JBS, the world’s largest meatpacking company, to shut down its operations.
The assault on the world’s largest meatpacking company disrupted meat production in North America and Australia, at one point stoking concerns about the potential for price increases and inadequate supply during the busy summer barbecue season.
REvil, which is pronounced as the letter “R” followed by the word “evil,” is primarily made up of native Russian speakers. It is also believed to be based in a former Soviet state.
The organization has a dark web site, anachronistically known as the “Happy Blog.” If the victims do not comply with the demands, the group posts stolen documents on its blog.
“We know that they are most likely protected by Russian intelligence or the Russian government, as are most ransomware groups, which has allowed them to thrive in the last 18 months,” said Marc Bleicher of Arete Incident Response. , a cybersecurity firm that specializes in negotiations. with criminal hackers, he previously told CNBC.
Packages of cuts of meat are displayed at a Costco store on May 24, 2021 in Novato, California.
Justin Sullivan | fake images
On Tuesday night, the company said it had made “significant progress in resolving the cyber attack” and that the “vast majority” of the company’s beef, pork, poultry and prepared food plants will be operational by Wednesday.
White House spokeswoman Karine Jean-Pierre said the Biden administration is engaging directly with the Russian government on this matter, “conveying the message that responsible states do not harbor ransomware criminals.”
– CNBC’s Eamon Javers contributed to this report.