Skip to main content

JBS paid $11 million Bitcoin ransom to restore systems, avoid further attacks

security threat
(Image credit: Shutterstock.com)

JBS reportedly paid about $11 million in ransom to the cyber criminals who encrypted their network, disrupting operations across North America and Australia.

The ransomware attack, attributed to the notorious REvil gang, forced the world's largest meat producer to shut down its beef plants in the US, as well as halting operations across Canada, and Australia. 

The shutdowns sent shockwaves across the food industry, leading to calls to double down the security of critical infrastructure following several major recent incidents.

“It was very painful to pay the criminals, but we did the right thing for our customers,” chief executive of JBS SA’s US division, Andre Nogueira told The Wall Street Journal. 

Nogueira added that the ransom, which as usual was paid in Bitcoin, was made only after the majority of JBS plants were back up and running again.

Tough stance

JBS is the latest company to give in to the demands of their cyber perpetrators, following the example of Colonial Pipeline, which reportedly paid around $5 million after its network was held hostage by the DarkSide ransomware gang, leading to a temporary increase in fuel prices in parts of the US.

The increasing frequency of cyberattacks has forced the US government to toughen its stance on ransomware. In addition to setting up a dedicated ransomware taskforce, the country has vowed to treat such incidents as acts of terrorism.

Bloomberg quotes an unnamed White House National Security Council spokesperson as saying that “private companies should not pay ransom. It encourages and enriches these malicious actors, continues the cycle of these attacks, and there is no guarantee companies get their data back.”

In fact, the US has managed to recover a substantial portion of the Bitcoin ransom paid by Colonial, which only converts to about $2.2 million thanks to the declining value of Bitcoin. 

Via CNN