1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • Data stolen in MOVEit breach leaked by notorious ransomware gang

    From TechnologyDaily@1337:1/100 to All on Mon Jul 24 15:15:03 2023
    Data stolen in MOVEit breach leaked by notorious ransomware gang

    Date:
    Mon, 24 Jul 2023 14:58:24 +0000

    Description:
    Russian ransomware group Clop is estimated to make up to $100 million from
    its MOVEit campaign.

    FULL STORY ======================================================================

    A top cybersecurity analyst and security researcher has claimed the Clop ransomware gang responsible for the MOVEit attacks is ramping up its threats in the hope to get victims to pay up.

    Dominic Alvieri discovered on July 22 that the Russian ransomware group had created a clearnet domain designed to distribute stolen data from one of its targets, professional services giant Ernst & Young, posting a screenshot of the dotcom website to Twitter .

    Ernst & Young, trading as EY, had been notified via Tweets and direct
    messages from Alvieri, but its uncertain whether the company has responded. Clop threatens to leak MOVEit data

    The analyst and researcher also reached out to BleepingComputer , informing the publication that the ransomware groups first target was business consulting firm PWC. Read more

    These are the best firewall tools around


    Ransomware gangs are losing interest in US firms


    There's a hefty reward in store for those who know about Clop ransomware
    links

    In addition to EY and PWC, BleepingComputer reports that websites had also been created for Aon, Kirkland, and TD Ameritrade.

    Typically, data leaks are hosted on the Tor network thanks to the additional anonymity and difficulty relating to how enforcement bodies can remove the pages. Instead, Clop is threatening to leak MOVEit breach data on the regular Internet, hence Alvieris dotcom comment.

    Because of the nature of clearnet domains, websites are at a much higher risk of being taken down, which has been true in the case of Clop, though its unclear whether enforcement agencies or hosting providers are responsible for their takedown.

    Similarly, BleepingComputer suggests that cybersecurity firms could have launched their own DDoS attacks in an effort to protect victims.

    According to Coveware , the small number of Clops estimated 1,000 direct targets that are likely to pay - or have already paid - ransoms could see the Russian group earn $75-100 million from MOVEit-linked demands alone. Check
    out the best endpoint protection

    Via BleepingComputer



    ======================================================================
    Link to news story: https://www.techradar.com/pro/data-stolen-in-moveit-breach-leaked-by-notorious -ransomware-gang


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)