Ransomware Attack on REV Drill Sales & Rentals

Overview

REV Drill Sales & Rentals Inc, founded in 1999, is a privately held company based in Frederick, MD. They specialize in offering economical drilling solutions and providing exceptional customer service to clients in the Construction sector. The company has a revenue of $5 million and employs 11-20 individuals. The cybercriminal group Akira launched a ransomware attack on the company in April 2024 which reportedly took financial documents, HR data, employee details, and more data of sensitive nature.

Company Standout Features

The company attacked is known for its revolutionary approach to drilling, with the unique design that can be easily attached to and removed from any excavator using existing excavator hydraulics. They offer a wide range of drilling solutions, including continuous flight, short auger, and down hole hammer applications. The company is committed to supporting clients from start to finish, providing value-engineering principles and on-site support.

Vulnerabilities

Being a small to medium-sized business in the construction industry, REV Drill Sales & Rentals is vulnerable to cyber attacks, especially ransomware attacks. The Akira ransomware group, known for targeting SMBs, has recently claimed an attack on the company. Akira ransomware is notorious for encrypting files, stealing corporate data, and demanding significant ransoms. The group has been observed using various tools to gain initial access and establish persistence in victim environments.

Sources:

REV Drill Sales & Rentals Website
Trend Micro - Ransomware Spotlight: Akira
Check Point - Ransomware Threat Prevention