December 9, 2023
Data transfered to C&C even before encryption

Ransomware threats are evolving – hackers are now harvesting data that before they might only encrypt, to use as leverage over companies that refuse to pay ransom fees.

According to Bleeping Computer, cybersecurity firm Cyble has discovered data stolen from Brooks International by ransomware operators Sodinokibi available for purchase on a public hacking forum.

The company had refused to pay the ransom fee, which drove Sodinokibi to list the stolen 12GB dataset – said to contain credit card information and log in credentials – for a fee of around $2.15.

According to cybersecurity experts, ransomware operators spend up to three days mapping an infected networking and gathering information about connected devices.

During this “dwell time”, valuable data is identified and downloaded to a third-party server and the information encrypted, preventing access by the network owner.

If the company refuses to pay the ransom fee, criminals threaten to release the harvested data online, placing the company at risk of financial penalties and reputational damage.

Damage is getting bigger now.. it’s not about Ransome.. it’s about privacy

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.