Sodinokibi (REvil) ransomware operators announced last week they have compromised a computer network of Brown-Forman Corporation, one of the largest U.S. manufacturer of alcoholic beverages including Jack Daniel’s and Finlandia.
The gang claims to have stolen 1TB of data that includes confidential information about employees, company agreements, contracts, financial statements, and internal correspondence. According to the ransomware operators, they have spent more than a month examining the Brown-Forman’s computer infrastructure and services.
As a proof of the hack the group has published on their leak site multiple screenshots containing directory trees, files allegedly belonging to the firm, and internal conversations between some employees. The Sodinokibi ransomware operators plan to put up for auction the most sensitive data and leak the rest, which is their usual modus operandi aimed at forcing compromised companies into paying the ransom.
In a statement sent to Bloomberg, the manufacturer confirmed it suffered a cyber attack, but was able to prevent its systems from being encrypted.
“We are working closely with law enforcement, as well as world class third-party data security experts, to mitigate and resolve this situation as soon as possible. There are no active negotiations,” the company said.