According to a recent MyBroadband article, Telkom has fallen victim to the group behind the Sodinokibi ransomware, also known as REvil.
The group has claimed responsibility for the attack and has threatened to leak the Telkom client database on its the Dark Web blog.
The REvil / Sodinokibi group is one of several ransomware operators that steals sensitive data from victims and leaks it on the dark web if their targets don’t give in to their extortion demands.
The group has recruited a team of affiliates who carry out attacks on corporate networks.
According to speculation, the group may have tried to extort $1-million out of Telkom.
The company denied that its systems had been infected with ransomware.
Staff working remotely were unable to connect to servers or the Telkom virtual private network.