Travelex says ransomware recovery is underway two weeks after global blackout
The financial exchange Travelex said Monday it has restored some of its digital capabilities for foreign currency trades, nearly two weeks after a ransomware attack forced staff to rely on pens and paper. Travelex said its making “good progress” in its recovery from a security incident that, on Dec. 31, forced the company to suspend online services, including its app and internal email systems. Ransomware attackers used a malicious software strain called Sodinokibi, or REvil, reportedly to demand a fee of $6 million (£4.6 million) to release the affected data. Now, Travelex said, it is restoring internal processes and issuing refunds to customers “where appropriate,” according to Reuters. Hackers previously told the computer security blog Bleeping Computer they were in negotiations with Travelex about the ransom payment. Travelex did not respond to a request for comment from CyberScoop Monday. The company, a subsidiary of United Arab Emirates-based Finablr, operates 1,200 locations […]
The post Travelex says ransomware recovery is underway two weeks after global blackout appeared first on CyberScoop.
Continue reading Travelex says ransomware recovery is underway two weeks after global blackout