Get a Demo
Platform
Why SentinelOne?
Services
Partners
Resources
About
Pricing
Get a Demo
Back to Resources

SentinelOne Vs. REvil Ransomware – Protect Mode

Video
SentinelOne Vs. REvil Ransomware – Protect Mode

The latest media reports suggest that the REvil ransomware family is behind the recent attack on JBS. The ransomware attack affected operations in North America and Australia, igniting fears of product shortages and price increases. The REvil group has been in operation (in current form) since mid 2019. Their ransomware is distributed via multiple methods including Exploit Kits, exploitation, as well as partnerships with other malware ‘frameworks’.
The SentinelOne Endpoint Protection Platform is capable of preventing & detecting REvil and all related, malicious, artifacts. Since launch, REvil has been available through multiple ‘underground forums’. There is some evidence to support ties between REvil / the REvil Gang and Ukraine and Russian actors. There are also indications that they work with other ransomware groups, and may have even based some of their code on GandCrab.

#ransomware #REvil #cybersecurity #infosec #endpointprotection

Watch Now
Ransomware
Related Resources
Video
RSAC 2025: Join SentinelOne
Video
Is DeepSeek a Cybersecurity Threat? SentinelOne’s Alex Stamos Answers.
Video
SentinelOne and Aston Martin F1 Team
Video
LABScon24 Replay | Resilience and Protection in the Windows Ecosystem | Weston & Zetter

Experience the World’s Most Advanced Cybersecurity Platform

See how our intelligent, autonomous cybersecurity platform harnesses the power of data and AI to protect your organization now and into the future.

Request a Demo