FBI identified Russia-linked ransomware group REvil on Wednesday, June 2, 2021 as the entity responsible for the cyberattack that forced key US meat producer JBS to shut down all of its beef plants, according to a report.
JBS said on Monday that it was hacked by a suspected Russian entity on Sunday, forcing it to shut down production at several of its factories.
In a statement on Wednesday, the Federal Bureau of Investigation said it is working diligently to bring the threat actors known as “REvil” or “Sodinokibi” to justice.
“As the lead Federal investigative agency fighting cyber threats, combatting cybercrime is one of the FBI’s highest priorities,” the statement reads. “We continue to focus our efforts on imposing risk and consequences and holding the responsible cyber actors accountable. Our private sector partnerships are essential to responding quickly when a cyber intrusion occurs and providing support to victims affected by our cyber adversaries. A cyber attack on one is an attack on us all. We encourage any entity who is the victim of a cyber attack to immediately notify the FBI through one of our 56 field offices.”
REvil is also known as Sodinokibi. The White House previously said a criminal group likely based in Russia was thought to be responsible for the hack.
President Biden said his administration was “looking closely” at the possibility of retaliatory action toward Russia following the JBS hack and a previous cyberattack by a different Russia-linked group that affected the Colonial Pipeline.
