The Prometheus ransomware first appeared in February 2021, the FBI has issued an alert about it. It is a variant of the Thanos ransomware and claims to be an extension of the REvil Sodinokibi group, but there is no concrete evidence of a link between the two groups.
This tactic is used by newly created groups that do not yet have as much relevance in the medium. Using references to larger groups brings the group an authority that alone would not be easily achieved, bringing more weight to their name, making the hacked company take them more seriously and pay the ransom.
The standard ransom demanded by the group for each attack costs an average of $20,000.
The Prometheus Ransomware claims to have hacked 30 organisations and carried out attacks in some countries like the United States, Brazil, Norway and 15 more countries, and some Brazilian organisations like, Chilli Beans and the retail chain SINCOR have suffered attacks by this ransomware.
Ransomware maintains a focus on some specific areas, such as Manufacturing, Logistics, Financial, Agriculture, Security, Healthcare, Construction, Hospitals among others.
And Prometheus itself has a website for leaking the files, to shame companies and create pressure for them to pay the ransom. In case the payment does not occur in the determined time, the data auction starts.
Recover files encrypted by prometheus Ransomware
Digital Recovery is able to recover virtually all ransomware extensions because it has developed a technology that is able to reconstruct the encrypted data, recovering the data without the need for the decryption key.
In emergency recovery mode, the laboratories work 24×7. During the whole process the customer is accompanied by a specialist who in real time updates him with constant feedback on the recovery process.
All processes are fully in accordance with General Data Protection Regulation (GDPR) and signing the confidentiality agreement (NDA) so that the client has the guarantee that their data will not be disclosed.
See in practice what we can do to recover ransomware files, contact our experts and start the data recovery process now.