SeaChange, a global public video supplier, has reportedly been hit by a Windows ransomware attack, the malware being REvil alias Sodinokibi.
The organization has over 50 million customers and is quoted on the NASDAQ, a monitoring and protection data breach service, as reported in a tweet, which included a screenshot of some of the content on the group’s website.
REvil/Sodinokibi Ransomware group just posted a threatening message to Seachange, a global, public supplier of video delivery software.
– Seachange has over 50,000,000 subscribers.
– The company is traded on NASDAQ. pic.twitter.com/0gykQl53Ft
— Under the Breach 🦠 (@underthebreach) April 23, 2020
Sodinokibi (REvil) has created a new victim page for SeaChange to update their data leak account, posting photos of some documents that they stole during an alleged assault.
Such photos show a snapshot of folders on an apparently open website, a bank statement, insurance certificates, the driver’s license, and a cover letter for a video-on-demand service request from the Pentagon.
When we asked Sodinokibi operators how much they had paid and how much data they had stolen, they declined to supply more information.
Ransomware operators also release small quantities of stolen data to continue to exert pressure on their victims.