Kaseya refused to pay ransom of $ 70 million in BTC to hackers REvil

Kaseya obtained a decryptor key for accessing systems attacked by REvil hackers and shared it with customers. Kaseya claims it did not pay the ransom to the hackers.

In early July, software provider Kaseya was hit by a hacker attack, REvil. Ransomware has paralyzed the networks of at least 200 American companies. The ransom for decrypting the data was about $ 70 million in BTC.

At the end of last week, Kaseya announced that it had received a decoder key to unlock the systems. However, the company declined to disclose how it did it and only stated that it received it from a “trusted third party.” After that, the media suggested that Kaseya paid the ransom, but the company denies this information.

“We confirm that Kaseya did not pay the ransom – directly or indirectly through a third party – for receiving the decoder,” the company said in a statement on its website. “Although each company has to make its own decision on whether to pay the ransom, after consulting with experts, Kaseya decided not to negotiate with the criminals who carried out this attack, and we have not backed down from that commitment.”

Following this announcement, some in the industry speculated that the company obtained the key through government channels. Recall that sites on the darknet, which published statements on behalf of the REvil hackers, stopped working on July 13.

Ransomwhere reports that ransomware hackers have earned about $ 33 million in BTC from ransoms since the beginning of the year. Last year was a record in terms of payments to hackers using ransomware viruses. However, according to analyst firm Chainalysis, 2021 could even surpass 2020.