A new threat actor emerged in the cyber landscape with debuting Valencia Ransomware, which listed five major entities on their leak site.
The alleged victims are the
- City of Pleasanton
- Bangladeshi drugs maker Globe Pharmaceuticals Limited
- Indian paper manufacturer Satia Industries
- Malaysian pharma firm Duopharma Biotech Berhad
- Spanish fashion retailer Tendam.
Earlier this week, Valencia began leaking on the dark web sensitive info that allegedly belonged to the city of Pleasanton.
The files available for download on the dark web include PII — names, full addresses, dates of birth, annd driver license numbers — as well as credit card numbers, and other personal and company financial data, plus other sensitive files, credentials, employee resumes and confidential company documents.
It is claimed that the Stolen files are from Globe Pharmaceuticals are also up for grabs, and include dermatology product details and invoices, along with a ton of employee information: Payment and salary info, insurance data, names and phone numbers, bank accounts, and private keys, among other sensitive files.
It’s too early to definitively link Valencia to other underground criminal operations. However, with the state of the multi-trillion-dollar cybercrime economy, ransomware groups, both existing and new, aren’t going away anytime soon.
