Hacker group REvil steals Apple products’ blueprints, demands $50M ransomware

Cybersecurity experts comment on REvil ransomware attack on Apple’s supplier, Quanta
Cybersecurity experts comment on REvil ransomware attack on Apple’s supplier, Quanta.
4 years ago

In yet another major ransomware attack, Russian hacker group, REvil has claimed to have stolen blueprints of Apple’s latest products. REvil infiltrated network of Apple’s supplier, Quanta which makes Macbooks. The attack coincided with Apple’s Spring Loaded event where the company revealed its new products.

Quanta said that it doesn’t expect any material impact on business from a ransomware attack. In March, the REvil group was said to be behind the ransomware attack on Acer.

Below are a few comments from cybersecurity experts:


Ammar Enaya, Regional Director – METNA, Vectra AI

Ammar Enaya, Regional Director – METNA, Vectra AI

Like many other franchise models, REvil aspires to create a clear sense of their brand. It appears that the brand identity they are going for is large-scale extortion.

All the messages are even cloaked in language commonly used by legitimate business, buy now to get a discount as it will cost more next week. Notwithstanding these eye-popping ransom requests, there is little evidence of large-scale payouts to the REvil group and franchisees should be careful not to pin their financial future on the veracity of the brand identity.


Sam Curry, Chief Security Officer, Cybereason

Sam Curry, Chief Security Officer, Cybereason

The shocking cyberattack is a reminder that ransomware sits at the forefront of a new cyberwar that nation states are waging on western corporations and government agencies. These bold and brazen attacks are coming faster and more frequently than ever before. And with ransom demands skyrocketing from a few thousand dollars to $50 Million or more, it is time for the private and public sector to put any differences aside to come together to find solutions.

Today, questions about connections with the other side are debated hotly among researchers and pundits, ranging from copyright pirates to ransomware gangs. On its face, this is a golden opportunity for a ransomware gang to get to a large population of lucrative owners. This would pay for years, filling the coffers on the dark side; and it is a reminder that no tech is immune.

However, the spectre of the Russian government in the shadows cannot be ignored because it comes at a time of cyber saber-rattling between the US and Russia. President Biden has begun sanctions and penalties for SolarWinds and election meddling, and Russia’s President Putin has puffed out his chest in response.

So, this attack on the supply chain of the largest supplier of consumer-used computing devices is not a coincidence, either REvil is benefitting indirectly from pariah policies related to cybercrime in Russia or is directly taking orders from a government, sending a message around the world to Washington. Either way, this is one to watch as the ongoing story unfolds.


Ram Narayanan, Country Manager, Check Point Software Technologies Middle East

Ram Narayanan, Country Manager, Check Point Software Technologies Middle East

Ransomware attacks may have started off simplistic and daring, but today they have become a business’ worst nightmare and a criminal’s cash cow. Cyber criminals know they can make money with ransomware and it has become a largely profitable industry. Business owners who are unprepared for a ransomware attack won’t bounce back without consequence – if they bounce back at all.
For cybercriminals, ransomware is relatively easy to implement; all it takes is one employee or lax security standard, and you can hold an entire company hostage. For business owners, ransomware is devastating; it can cost upwards of millions of dollars to fully recover from an attack. The potential attack vector can be prevented by implementing content scanning and filtering, anti-ransomware solutions which can proactively detect and quarantine these attacks and restore files, keeping systems up to date with patches, educating employees about phishing attacks designed to steal login credentials or enticing them to download a file that contains malware and enforcing strong user authentication which are all critical components of an organisation’s cybersecurity strategy.

Denis Legezo, Senior Security Researcher, Kasperky’s Global Research and Analysis Team

Denis Legezo, Senior Security Researcher, Kasperky’s Global Research and Analysis Team

Targeted ransomware attacks on large companies have become quite common, especially over the past few years. One specific attack, even on an organisation known worldwide, will not change the way things are operated. But we hope that the reaction to this trend will include the introduction of information security events monitoring; complex cybersecurity systems, including for proactive detection of attacks; and enhanced training of employees around cybersecurity rules.

The main task is to prevent the occurrence of such attacks in the future. In the aftermath of such attacks, it is important to conduct a comprehensive investigation of the incident, draw conclusions about the current vulnerabilities, and fix them. Also, in our opinion, it is important to put in place effective monitoring, and to have an action plan in case such attacks occur.

Unfortunately, purely technical protection measures are not enough – the contractor’s protection perimeter is under their jurisdiction. Manufacturers are left to impose strict information security requirements for their suppliers, as well as, for example, impose legal sanctions for such violations.


This is a developing story, go ahead and bookmark this link for latest updates.

Don't Miss

Oliver Tavakoli, CTO, Christian Borst, Vectra AI

Vectra AI releases annual threat predictions for cybersecurity stakeholders in UAE

Vectra AI announced the release of its annual threat predictions for cybersecurity

Mindware partners with Vectra AI to offer sales, pre-sales, professional services

Mindware announced its new strategic partnership with Vectra AI, the leader in