Security News > 2021 > August > Nokia subsidiary discloses data breach after Conti ransomware attack
Image: Kabiur Rahman Riyad. SAC Wireless, a US-based Nokia subsidiary, has disclosed a data breach following a ransomware attack where Conti operators were able to successfully breach its network, steal data, and encrypt systems.
Attack detected after Conti ransomware encrypted systems.
The Nokia subsidiary found that personal information belonging to current and former employees was also stolen during the ransomware attack on August 13, following a forensic investigation conducted with the help of external cyber security experts.
"The threat actor, Conti, gained access to the SAC systems, uploaded files to its cloud storage, and then, on June 16, deployed ransomware to encrypt the files on SAC systems," SAC says in data breach notification letters sent to an undisclosed number of impacted individuals.
While the company refused to acknowledge the ransomware attack and did not provide more info on the extent of the damage, the Conti ransomware gang revealed on their leak site that they stole over 250 GB of data.
According to a recent update, the ransomware group will soon leak all the stolen files online if the Nokia subsidiary doesn't pay the ransom they demanded.
- Accenture confirms data breach after August ransomware attack (source)
- Trucking giant Forward Air reports ransomware data breach (source)
- Bangkok Airways hit by LockBit ransomware attack, loses lotsa data after refusing to pay (source)
- FBI, CISA: Ransomware attack risk increases on holidays, weekends (source)
- Feds Warn of Ransomware Attacks Ahead of Labor Day (source)
- Translated Conti ransomware playbook gives insight into attacks (source)
- Ransomware attacks increased by 288% in H1 2021 (source)
- Securing your WordPress website against ransomware attacks (source)
- Ransomware attacks: The power of adaptation (source)
- Ransomware attacks are inevitable. Paying the ransom isn’t (source)