revil attacks Visotec Group

Incident Date:

April 20, 2022

World map



revil attacks Visotec Group


Visotec Group




Mahalunge, India

Maharashtra, India

First Reported

April 20, 2022

Visotec Group Targeted by REvil Ransomware Group

About Visotec Group

Visotec Group, a leading signage manufacturer, specializes in providing corporate visual identity solutions. The company aids world leaders and multinational organizations in conveying their values, ambitions, and characteristics through high-quality external signage. Their product range encompasses a variety of signage options, including signs, signage systems, and cladding solutions, detailed on their official website.

Company Size and Industry

The manufacturing sector, where Visotec operates, is frequently targeted by cybercriminals due to the high potential for financial losses and operational disruptions. While specific details regarding Visotec's size are not disclosed, the fact that REvil, a notorious ransomware group, has targeted a company associated with Apple's supply chain suggests that entities of considerable size and significance are at risk.

Vulnerabilities and Targeting

REvil, also known as Sodinokibi, has a modus operandi that involves exfiltrating data from its victims' networks and then threatening to release the stolen information unless a ransom is paid. This tactic was employed in their recent attack on Visotec Group, highlighting the critical need for robust cybersecurity defenses. The incident serves as a stark reminder of the vulnerabilities present in the manufacturing sector and the importance of implementing comprehensive security measures to mitigate the risk of such attacks.

The attack on Visotec Group by the REvil ransomware group is a clear indication that companies, especially those within the manufacturing sector, must prioritize and strengthen their cybersecurity frameworks to safeguard against the growing threat of ransomware attacks.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.