The DEVMAN 2.0 ransomware group has allegedly targeted two major companies, Diethelm Travel, a leading travel group in Asia, and Ruff, a Brazilian fuel distributor. The attackers are demanding ransoms of 1.8 million USD from Diethelm Travel and 1 million USD from Ruff, claiming to have exfiltrated 175GB and 220GB of data respectively from the companies.
The DEVMAN 2.0 gang announced the attacks on its dark web leak site, threatening to release the stolen data if the ransoms are not paid. This incident highlights the continuing trend of ransomware groups targeting critical and economically important sectors across the globe. The choice of victims, a major player in the Asian tourism sector and a significant energy company in Brazil, shows the broad and opportunistic nature of these cybercriminal operations.
- Diethelm Travel: Now known as DTH Travel, it is an award-winning travel and destination management company with a history of over 66 years. It operates across 14 countries in Asia and is a significant entity in the continent’s tourism industry.
- Ruff (ruff.com.br): A Brazilian fuel distributor and energy storage service provider founded in 1995. The company is a key player in the Brazilian energy market, with operations in several states and has been recognized as one of the top companies in the country’s oil and gas sector.
