The company that lost her data still hasn’t made any public disclosure or notified the people who were impacted (at least, she hasn’t heard from the company. “On a positive note, stunts like this mean people may actually find out that their PI has been compromised,” he said. “ BlackMatter,” the same gang responsible for the 2021 attack on Colonial Pipeline that caused fuel shortages and price spikes for several days last summer.Ĭallow said there may be an upside to this ALPHV innovation, noting that his wife recently heard directly from a different ransomware group - Cl0p. Many security experts believe ALPHV/BlackCat is simply a rebrand of another ransomware group - “ Darkside” a.k.a. ALPHV has been actively recruiting operators from several ransomware organizations - including REvil, BlackMatter and DarkSide - offering affiliates up to 90 percent of any ransom paid by a victim organization. We strongly advise you to be proactive in your negotiations you do not have much time.”Įmerging in November 2021, ALPHV is perhaps most notable for its programming language ( it is written in Rust). “At this point, you still have a chance to keep your hotel’s security and reputation. “We are not going to stop, our leak distribution department will do their best to bury your business,” the victim website reads. Most likely, this is a test run to see if it improves results. It’s unclear if ALPHV plans to pursue this approach with every victim, but other recent victims of the crime group include a school district and a U.S. “It’ll piss people off and make class actions more likely.” “Companies will likely be more concerned about the prospect of their data being shared in this way than of simply being posted to an obscure Tor site for which barely anyone knows the URL,” Callow said. But the website erected by ALPHV as part of this new pressure tactic is available on the open Internet. At the top of the page are two “Check Yourself” buttons, one for employees, and another for guests.īrett Callow, a threat analyst with security firm Emsisoft, called the move by ALPHV “a cunning tactic” that will most certainly worry their other victims.Ĭallow said most of the victim shaming blogs maintained by the major ransomware and data ransom groups exist on obscure, slow-loading sites on the Darknet, reachable only through the use of third-party software like Tor. The website claims to list the personal information of 1,500 resort employees, and more than 2,500 residents at the facility. Sometime in the last 24 hours, ALPHV published a website with the same victim’s name in the domain, and their logo on the homepage. Ransomware Group Debuts Searchable Victim Data Krebs on Security Ransomware Group Debuts Searchable Victim Data J10 Comments Cybercrime groups that specialize in stealing. The ALPHV site claims to care about people’s privacy, but they let anyone view the sensitive stolen data.ĪLPHV recently announced on its victim shaming and extortion website that it had hacked a luxury spa and resort in the western United States.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |