"New Ransomware Trends Spotted: Auctioning Stolen Files, Cybergangs Joining Forces"

Human-operated ransomware continues to grow more intense. In addition to worrying about system disruption, file encryption, and exposure, one may now have to decide whether to pay the demanded ransom or face having their stolen files sold in an online auction. It was recently reported that the criminal group behind REvil ransomware (also known as Sodinokibi or Sodin) has begun auctioning off stolen data via its own auction website. Companies that have fallen victim to such escalated tactics include a Canadian agriculture company and a food and harvest distributor. The group set the starting price for three stolen databases and more than 22,000 files from the agriculture company at $55,000 in Monero cryptocurrency. The ransomware operators have also threatened to auction Madonna's legal documents, which were stolen from the entertainment law firm Grubman Shire Meiselas & Sacks. Data auctions create another way for criminals to generate more revenue as well as increase pressure on victims to pay. The possibility of stolen data being purchased by competitors or other criminal groups may further push companies into meeting the demands for a ransom payment. This article continues to discuss the REvil ransomware gang's auctioning of victim data, how this scheme enhances ransomware campaigns, the potential future market for auctioned files, and the increased collaboration among different cybercrime groups. 

SC Media reports "New Ransomware Trends Spotted: Auctioning Stolen Files, Cybergangs Joining Forces"