REvil Ransomware can now reboot infected devices after encryption, researchers say. MalwareHunterTeam: The gang behind the REvil ransomware has added two new command lines to the ransomware. Emsisoft threat analyst Brett Callow: “The most likely reason for REvil introducing this functionality is that it may enable their ransomware to avoid detection by some security products” The gang has been tied to several high-profile attacks, such as the May 2020 attacks against celebrity law firm Grubman Shire Meiselas and Sacks.”]
Source: https://www.cuinfosecurity.com/revil-ransomware-now-reboot-infected-devices-a-16259