Subj : Data stolen in MOVEit breach leaked by notorious ransomware gang
To   : All
From : TechnologyDaily
Date : Mon Jul 24 2023 16:15:03

Data stolen in MOVEit breach leaked by notorious ransomware gang

Date:
Mon, 24 Jul 2023 14:58:24 +0000

Description:
Russian ransomware group Clop is estimated to make up to $100 million from 
its MOVEit campaign.

FULL STORY
======================================================================

A top cybersecurity analyst and security researcher has claimed the Clop 
ransomware gang responsible for the MOVEit attacks is ramping up its threats 
in the hope to get victims to pay up. 

Dominic Alvieri discovered on July 22 that the Russian ransomware group had 
created a clearnet domain designed to distribute stolen data from one of its 
targets, professional services giant Ernst & Young, posting a screenshot of 
the dotcom website to Twitter . 

Ernst & Young, trading as EY, had been notified via Tweets and direct 
messages from Alvieri, but its uncertain whether the company has responded. 
Clop threatens to leak MOVEit data 

The analyst and researcher also reached out to BleepingComputer , informing 
the publication that the ransomware groups first target was business 
consulting firm PWC. Read more 

 > These are the best firewall tools around 


 > Ransomware gangs are losing interest in US firms 


 > There's a hefty reward in store for those who know about Clop ransomware 
links 

In addition to EY and PWC, BleepingComputer reports that websites had also 
been created for Aon, Kirkland, and TD Ameritrade. 

Typically, data leaks are hosted on the Tor network thanks to the additional 
anonymity and difficulty relating to how enforcement bodies can remove the 
pages. Instead, Clop is threatening to leak MOVEit breach data on the regular 
Internet, hence Alvieris dotcom comment. 

Because of the nature of clearnet domains, websites are at a much higher risk 
of being taken down, which has been true in the case of Clop, though its 
unclear whether enforcement agencies or hosting providers are responsible for 
their takedown. 

Similarly, BleepingComputer suggests that cybersecurity firms could have 
launched their own DDoS attacks in an effort to protect victims. 

According to Coveware , the small number of Clops estimated 1,000 direct 
targets that are likely to pay - or have already paid - ransoms could see the 
Russian group earn $75-100 million from MOVEit-linked demands alone. Check 
out the best endpoint protection 

Via BleepingComputer



======================================================================
Link to news story:
https://www.techradar.com/pro/data-stolen-in-moveit-breach-leaked-by-notorious
-ransomware-gang


--- Mystic BBS v1.12 A47 (Linux/64)
 * Origin: tqwNet Technology News (1337:1/100)

.