Security News > 2021 > July > Saudi Aramco Facing $50M Cyber Extortion Over Leaked Data
Saudi Arabia's state oil giant acknowledged Wednesday that leaked data from the company - files now apparently being used in a cyber-extortion attempt involving a $50 million ransom demand - likely came from one of its contractors.
The Saudi Arabian Oil Co., better known as Saudi Aramco, told The Associated Press that it "Recently became aware of the indirect release of a limited amount of company data which was held by third-party contractors."
A page accessed by the AP on the darknet - a part of the internet hosted within an encrypted network and accessible only through specialized anonymity-providing tools - claimed the extortionist held 1 terabyte worth of Aramco data.
The page offered Aramco a chance to have the data deleted for $50 million in cryptocurrency, while another timer counted down from $5 million, likely in an effort to pressure the company.
The attack forced Aramco to shut down its network and destroy over 30,000 computers.
In 2017, another virus swept across the kingdom and disrupted computers at Sadara, a joint venture between Aramco and Michigan-based Dow Chemical Co. Officials at the time warned it could be another version of Shamoon.