The gift that keeps on giving –
Maze operators “gift” Pensacola by removing data dump, but others not so lucky.
Sean Gallagher – Jan , (8:) (UTC UTC)
- BST & Co., a certified public accountancy firm in Albany Lakeland Community College in Kirkland, Ohio
- The social media and public relations unit of Orlando-based company Massey Services
- According to Emsisoft threat analyst Brett Callow, one recent dump of a Canadian company data included employee “names, home addresses, social insurance numbers, tax forms, earnings details, health insurance numbers, banking information , drug test results, etc. “. The company failed to notify employees of the breach. None of these breaches have been reported publicly by their victims. “The lack of disclosure is clearly means that customers / clients / vendors / partners do not know that their data is now in the hands of cybercriminals and can be downloaded by anybody with an Internet connection,” Callow told Ars. “And that means they do not know that they should set up credit monitoring, notify their financial institution, be on the lookout for scams or spear phishing attempts.”
The Maze crew is not the only ransomware operation now using stolen data as additional leverage to get victims to pay up. The REvil / Sodinokibi ransomware ring has also threatened to reveal data of victims who don’t pay , including the travelers’ financial service provider Travelex. And other attackers may also be stealing data and using it in much more subtle ways to extort their victims.
GIPHY App Key not set. Please check settings