Security News > 2021 > May > Irish High Court issues injunction to prevent HSE data leak
The High Court of Ireland has issued an injunction against the Conti Ransomware gang, demanding that stolen HSE data be returned and not sold or published.
Today, Conti released a decryptor for encrypted files but warned that they still intend to publish or sell data stolen during the attack on the HSE. To try and prevent the release of personal and potentially sensitive medical data, the HSE has received an injunction against the Conti ransomware again from the High Court of Ireland.
A similar injunction was granted to wire and cable manufacturer SouthWire against the Maze Ransomware operation and an ISP in ireland who hosted the ransomware group's data leak site.
This injunction led to the temporary takedown of Maze's data leak site, but the SouthWire data was ultimately leaked when the threat actors brought the site back online.
Update 5/21/21 8:39 AM EST: While the injunction is against the Conti Ransomware gang and delivered to them via the negotiation chat on their Tor site, Irish Times Security & Crime Editor Conor Lally explains that the injunction is not intended to prevent the threat actors from leaking the data.
Conor Lally May 21, 2021 The injunction doesn't stop the media reporting if the attackers leak the data, which one assumes is likely.