Stories
Slash Boxes
Comments

SoylentNews is people

Dozens of Companies Have Data Dumped Online by Ransomware Ring Seeking Leverage

posted by Fnord666 on Monday February 03 2020, @10:14AM   Printer-friendly
from the all-your-data-are-belong-to-us dept.

upstart from IRC writes:

Dozens of companies have data dumped online by ransomware ring seeking leverage:

The Maze ransomware ring has taken extortion to new heights by publicly posting breached data on the Internet—and threatening full dumps of stolen data if the ring's "customers" don't pay for their files to be unencrypted. But the group appears to be making one exception: the City of Pensacola, which was hit by Maze ransomware in December.

On the group's website, the administrator of Maze's ransomware operations posted:

We are going to make a gift to City of Pensacola: we will not publish leaked private data, but we publish the list of leak data and hosts to proof [sic], that we did it, we really hacked City of Pensacola.

Just before Christmas, the Maze operators had posted 2GB of data from the city's systems, claiming it was only 10 percent of what had been stolen from systems before the attackers launched their ransomware attack. But the files were then removed, with only directory data, computer names, and IP addresses left on the site as proof of compromise. Based on the Maze site, 28 servers were hit by the attack.

Others have not been so lucky. The Italian foods company Fratelli Beretta saw all the data exfiltrated from 53 systems (a total of 3GB) posted online by Maze. And more recent victims have had smaller dumps posted. Stockdale Radiology, a radiology clinic in Bakersfield, California, saw screenshots of affected systems and data from the clinic's fax server posted—including patient data transmitted from another MRI clinic. Ars reached out to Stockdale Radiology for comment but got no response.

About 25 other victims are listed on Maze's site, with smaller "proof" data sets posted that include customer information. Victims include:

  • Busch's Inc., a grocery market chain in Michigan
  • BST & Co., a certified public accountancy firm in Albany
  • Lakeland Community College in Kirkland, Ohio
  • The social media and public relations unit of Orlando-based company Massey Services

Original Submission

 
This discussion has been archived. No new comments can be posted.
Dozens of Companies Have Data Dumped Online by Ransomware Ring Seeking Leverage | Log In/Create an Account | Top | 6 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

  • (Score: 0) by Anonymous Coward on Monday February 03 2020, @06:10PM (1 child)

    by Anonymous Coward on Monday February 03 2020, @06:10PM (#953211)

    Let's not forget the recent example of Jim Bezos getting hacked by Saudi Arabia.

    The Babylon Bee covered the event, the best, IMHO: 'Saudi Crown Prince Calls Jeff Bezos To Casually Ask Him About His First Pet, Mother’s Maiden Name, And The Street He Lived On As A Child', https://babylonbee.com/news/saudi-crown-prince-calls-jeff-bezos-just-to-ask-him-about-his-dog-mothers-maiden-name-and-his-first-car [babylonbee.com]

    Why did he even have a cellphone with him at the meeting?

    Why did he have HIS cellphone with him?

    All Jim Bezos NEEDED was a pad, a pencil, and maybe a USB recorder, to make sure he didn't miss anything.

    If I recall correctly, Bezos was in Saudi Arabia. He should have left his REAL phone with his secretary, in North America, and taken a burner phone with him.

    WTF is the matter with you, corporate America? Too much cocaine? Too much advertising? Starting to believe your own propaganda? We all know how THAT ends.

  • (Score: 2) by hendrikboom on Monday February 03 2020, @07:58PM

    by hendrikboom (1125) Subscriber Badge on Monday February 03 2020, @07:58PM (#953268) Homepage Journal

    Is that news or satire? I can't tell anymore.