South Korean firm reportedly pays 'record amount' after $1M ransomware demand

Nayana, a South Korean web hosting company, reportedly paid $1 million in bitcoin after being hit with a ransomware demand, according to BBC.

The company's CEO said the cyberattackers — who used a ransomware variant called Erebus, which targets computers on Windows and Linux operating systems — demanded $4.4 million. However, the CEO attempted to negotiate the price to less than $500,000. The cyberattackers proceeded to decrease the amount to $1 million "at the last minute," BCC reports.

Security experts, who often warn against complying with ransomware demands, have said this incident marks the largest known ransomware payment worldwide.

"This is a record ransom from what I know, although some will have paid and not gone public," Angela Sasse, director of the Institute in the Science of Cyber-Security, told the BBC.

Nayana is in the process of recovering data, according to a company update posted June 17. In a separate statement, the company's CEO said, "Now I am bankrupt. Everything I've been working on for 20 years is expected to disappear," according to BBC.

More articles on health IT:
ONC, CMS execs participate in Provider Data Action Alliance
Former director of the National Cancer Institute nabs $14M in Series A funding
Girl Scouts add badges in cybersecurity

© Copyright ASC COMMUNICATIONS 2019. Interested in LINKING to or REPRINTING this content? View our policies by clicking here.


Top 40 Articles from the Past 6 Months