Virtually just one 7 days soon after JBS Usa announced it had recovered from a ransomware attack thanks to correct backups and incident response techniques, the firm has now verified it paid out an $11 million ransom.

JBS Usa, a subsidiary of the world’s major beef producers, was struck by REvil ransomware on Could 30, forcing the firm to shut down operations. On June three, the firm announced the resolution of the ransomware attack, citing the firm’s “swift response, strong IT methods and encrypted backup servers” for the “swift recovery.”

However, in a press launch Wednesday, JBS Usa verified it paid out a significant ransom to REvil menace actors. The worldwide beef maker explained it made the decision to spend in get to mitigate “any unexpected issues similar to the attack, and make certain no facts was exfiltrated.” In response to the attack against its operations, JBS Usa explained it paid out the equal of $11 million in ransom — even although the firm admitted the “vast vast majority” of its facilities had been operational at that time.

“This was a very tough decision to make for our firm and for me personally,” Andre Nogueira, CEO of JBS Usa, explained in the statement. “However, we felt this decision had to be made to avert any prospective possibility for our consumers.”

It is still unclear when methods had been totally restored — before or soon after paying out the ransom — and when the payment was made. The June three press launch explained, “all of its worldwide facilities are totally operational soon after resolution of the prison cyberattack.” In Wednesday’s statement, JBS Usa explained that “at the time of payment, the vast vast majority of the firm’s facilities had been operational.”

SearchSecurity contacted JBS Usa for remark, but the firm did not respond at press time.

The first attack only afflicted some of the servers supporting JBS’ North American and Australian IT methods. It did not effect the firm’s backup servers or main manufacturing methods.

The FBI afterwards attributed the attack to the REvil ransomware group. The group is driving just one of the best calls for ever made, $fifty million, against Taiwan-based mostly Laptop maker Acer Inc. just final month. REvil is regarded to use facts exfiltration with threats to leak the stolen facts if victims do not spend. JBS explained just one rationale it paid out was to make certain no facts was exfiltrated.

JBS Usa is the next firm to give in to a multi-million-greenback ransom demand recently. Colonial Pipeline Co. verified it paid out a $four.four million ransom to DarkSide ransomware actors final month, although the FBI seized the vast majority of the payment. Although the attackers differed, in each cases the ransomware only afflicted IT methods and not main manufacturing methods. Yet, in each cases, the ransomware groups made off with millions.

JBS Usa explained it has maintained constant communications with authorities officials all over the incident, and that third-party forensic investigations are still ongoing, but no closing determinations have been made about how the menace actors obtained obtain to its community. According to the statement Wednesday, preliminary investigation results present no proof that any firm, buyer or worker facts was compromised.