Prometheus Ransomware

The Prometheus ransomware first appeared in February 2021, the FBI has issued an alert about it. It is a variant of the Thanos ransomware and claims to be an extension of the REvil Sodinokibi group, but there is no concrete evidence of a link between the two groups.

This tactic is used by newly created groups that do not yet have as much relevance in the medium. Using references to larger groups brings the group an authority that alone would not be easily achieved, bringing more weight to their name, making the hacked company take them more seriously and pay the ransom.

The standard ransom demanded by the group for each attack costs an average of $20,000.

The Prometheus Ransomware claims to have hacked 30 organisations and carried out attacks in some countries like the United States, Brazil, Norway and 15 more countries, and some Brazilian organisations like, Chilli Beans and the retail chain SINCOR have suffered attacks by this ransomware.

Ransomware maintains a focus on some specific areas, such as Manufacturing, Logistics, Financial, Agriculture, Security, Healthcare, Construction, Hospitals among others.

And Prometheus itself has a website for leaking the files, to shame companies and create pressure for them to pay the ransom. In case the payment does not occur in the determined time, the data auction starts.

Recover files encrypted by prometheus Ransomware

Digital Recovery is able to recover virtually all ransomware extensions because it has developed a technology that is able to reconstruct the encrypted data, recovering the data without the need for the decryption key.

In emergency recovery mode, the laboratories work 24×7. During the whole process the customer is accompanied by a specialist who in real time updates him with constant feedback on the recovery process.

All processes are fully in accordance with General Data Protection Regulation (GDPR) and signing the confidentiality agreement (NDA) so that the client has the guarantee that their data will not be disclosed.

See in practice what we can do to recover ransomware files, contact our experts and start the data recovery process now.

Digital Recovery helps businesses recover data

Check out other posts

We are
always online

Please fill out the form, or select your preferred contact method. We will contact you to start recovering your files.

Latest insights from our experts

Ransomware AtomSilo

AtomSilo Ransomware

The AtomSilo ransomware emerged in September 2021, the group acts a little differently than other ransomware groups, the ransom amount is fixed, $1 million is

Khonsari Ransomware

Khonsari Ransomware

The Khonsari ransomware was the first group to exploit known Apache Log4j vulnerabilities (CVE-2021-44228 and CVE-2021-45046), the group has focused its attacks on Windows servers that


Through unique technologies Digital Recovery can bring back encrypted data on any storage device, offering remote solutions anywhere in the world.