U.S. and at least one ally appear to have begun targeting infrastructure used by REvil, leading to it suffering an outage last July and again last September. On April 29, malware research director at Avast reported finding in the wild a new, perhaps still-in-development version of REvil. The ransom note associated with the malware says it is from REvil/Sodinokibi (REvil) ransomware’s blog. Many established players continue to disappear as some established players disappear, as new players also remain a constant.”]
Source: https://www.cuinfosecurity.com/blogs/cant-fight-that-revil-ransomware-feeling-anymore-p-3226