Home News Mexico State-Owned Oil Giant Pemex Hit With $5 Million BTC DoppelPaymer Ransomware...

Mexico State-Owned Oil Giant Pemex Hit With $5 Million BTC DoppelPaymer Ransomware Attack

TL;DR: Mexico state-backed oil giant Petróleos Mexicanos (Pemex) was hit over the weekend with a DoppelPaymer ransomware attack, demanding nearly $5 million in BTC. The scheme caused Pemex to shut down related terminals around the country, delaying payment systems and causing public relations headaches.

Pemex Hit With $5 Million BTC Ransomware Attack

Pemex is the globe’s second-largest state-owned company, holding close to half a trillion dollars in total assets. It’s also a source of national pride for Mexico, and so any disruption in its day-to-day operations is newsworthy. Hackers evidently told Reuters the ransom was raised after the oil and gas giant refused to respond.

Ransomware is exactly as advertised. Hackers get ahold of a system in a variety of ways, somehow compel workers to inadvertently install a program enabling access to sensitive, often critical, functions. The company or agency is then given an ultimatum to pay, increasingly in cryptocurrency, or suffer the consequences. For many executives and city councils, it becomes a raw calculation, and they’ve often chosen to simply pay in order to regain access.


“A ransom note that appeared on Pemex computers seen by Reuters pointed to a darknet website affiliated with ‘DoppelPaymer,’ a type of ransomware,” the news agency explained. “The website demanded 565 bitcoins, or nearly $5 million at current prices, and threatened Pemex with a 48-hour deadline, listing an email address to contact.”

Pemex apparently has still not responded to either media requests or attackers. The company has, however, issued a statement, which encouraged those covering the ongoing saga to “avoid rumors and disinformation,” insisting the attack impacted a small number of its terminals. DoppelPaymer is a rebranding of sorts from security outfit CrowdStrike, and this latest variation forced Pemex “to communicate with employees via mobile messaging service WhatsApp,” Reuters noted, “because employees could not open their emails, said another source, who was also not authorized to speak to reporters.”


CONTINUE THE SPICE and check out our piping hot VIDEOS. Our podcast, The CoinSpice Podcast, has amazing guests. Follow CoinSpice on Twitter. Join our Telegram feed to make sure you never miss a post. Drop some BCH at the merch shop — we’ve got some spicy shirts for men and women. Don’t forget to help spread the word about CoinSpice on social media.

DYOR: CoinSpice is your home for just spicy crypto things. We’re not affiliated with any cryptocurrency project or token. Each published piece is intended for information purposes only, not investment advice and not in the hope of impacting speculative markets. There are plenty of trading sites and coin-specific advocacy journals out there, we’re neither. CoinSpice strives for rigorous accuracy in our reporting. Information presented here is contingent usually on a host of factors, and the ecosystem moves fast — prices change, projects change, and at warp speed. Do your own research.

DISCLOSURE: The author holds cryptocurrency as part of his financial portfolio, including BCH.