Dairy Farm, a group that operates many retail chain stores across Asia, has been attacked by threat actors of the REvil ransomware gang. Information shared with reporters at Bleeping Computer showed proof that the group had managed to breach the systems of the company. The company stated that they were aware of the attack this month but stated only two percent of their company’s devices were affected. According to the threat actors, they are still active within the network and downloading information. Dairy Farm said they were not aware of any data being stolen in the attack, but data shared with Bleeping Computer shows internal emails from the company talking about the attack. The attackers still have access to the corporate email network and stated they plan on using that access for phishing attacks.
Intro The Binary Defense threat hunting team are experts on today’s threat actor groups. In