[BreachExchange] REvil ransomware gang hacked gaming firm Gaming Partners International

Destry Winant destry at riskbasedsecurity.com
Wed Nov 4 10:46:19 EST 2020


https://securityaffairs.co/wordpress/110237/cyber-crime/gaming-partners-international-revil-ransomware.html

Gaming Partners International (GPI) is a full-service supplier of
gaming furniture and equipment for casinos worldwide. The REvil
ransomware gang (aka Sodinokibi) claims to have stolen info from the
systems at the company before encrypting them.

Recently, one of the members of the gang that goes online with the
moniker UNKN, announced in an interview with Yelisey Boguslavskiy that
they were planning an attack against a prominent organization in the
gaming network.

The attack happened and today the REvil ransomware operators added
Gaming Partners International to their dedicated leak site.

The cybercrime gang published some screenshots showing directories and
files from the systems of the breached company.

Source Databreaches.net

The message published by the ransomware gang threatens to release the
stolen data if the company will not pay the ransom within 72 hours.

The hackers claim to have stolen 540Gb of technical and financial
documents stolen form the company.

“Absolutely all servers and working computers of the company are
hacked and encrypted. There was a large data leak 540Gb of the most
important information of the company, technical data, financial
documents, contracts with ALL CASINO in LAS-VEGAS, MACAO, EUROPE, bank
documents.” reads the message published by the ransomware operators.

The list of victims of the REvil ransomware gang is long and includes
the London-based Travelex, the law firm of the stars, Grubman Shire
Meiselas & Sacks (GSMLaw), the law firm Seyfarth Shaw, and US-based
supplier of video delivery software solutions, SeaChange
International.


More information about the BreachExchange mailing list