REvil Linux #Ransomware : The ransomware-as-a-service (RaaS) operation behind REvil ( aka Sodinokibi, Sodin ) have become one of the most prolific and successful threat groups since the ransomware first appeared in May 2019. REvil has been primarily used to target #Windows systems. However, the threat actors behind #REvil #ransomware have expanded their arsenal to include #Linux ransomware

https://cybersecurity.att.com/blogs/labs-research/revils-new-linux-version