“Cl0p” refers to a variant of ransomware, software designed to lock a victim’s computer files until a ransom is paid. “On attempts to ‘settle’ they responded with silence and we had to upload the data.” “We hacked their server where they stored data,” they told Vice. But the Wall Street Journal reported that people claiming to be behind the theft have said they had “over 100 gigabytes of data.” Vice reported Tuesday that the same attackers claimed they tried to engage Jones Day in talks about the stolen material but didn’t hear back. A message sent to the site’s support email addresses was not immediately returned. It’s unclear who exactly is behind the breach. The emails were posted to Cl0p Leaks, a dark web site where other stolen data has been shared, on February 9. “We hacked their server…they responded with silence.” An early February update from the company said it had become aware of an initial attack in mid-December that continued into January 2021. The company that makes it, Accellion, confirmed in January that one of its products had been compromised, disclosing that “less than 50 customers” had been effected. In statements to reporters at the American Lawyer and the Wall Street Journal, Jones Day maintained that its network had not been breached, blaming a third-party file sharing product instead. Jones Day, the powerhouse law firm known for high-profile clients and cases- including aiding former President Donald Trump’s efforts to overturn his 2020 election loss-confirmed Tuesday some of the firm’s “information” had been “taken” through a hack targeting one of its vendors. UNC2582 has claimed in extortion emails to victims that it is linked with the threat actors behind Clop ransomware, according to FireEye.Fight disinformation: Sign up for the free Mother Jones Daily newsletter and follow the news that matters. A group known as UNC2546 appears to be the group behind the initial exploitation of the Accellion FTA zero-day vulnerabilities, according to FireEye researchers, who have also said that a group called UNC2582 appears to be using stolen data to extort victims. Security researchers are tracking multiple overlapping hacking groups that appear to be involved the operation. The hackers involved in the Accellion hack have, in some cases, threatened to publish data stolen from victims. Palo Alto-based Accellion has been hit with a class action lawsuit in recent weeks that claims it failed to ensure “adequate security protocols” for the FTA. Other victims include the Reserve Bank of New Zealand, the state of Washington, Harvard Business School and cybersecurity company Qualys. Jones Day, a prominent law firm, has also been hit, according to The Wall Street Journal. A Michigan-based savings bank and the grocery chain Kroger have previously announced that they have been impacted as a result of Accellion’s breach. The list of companies that use Accellion’s FTA that have fallen victim to the Accellion hack continues growing by the day.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |