Security News > 2022 > October > Hive Ransomware Hackers Begin Leaking Data Stolen from Tata Power Energy Company
The Hive ransomware-as-a-service group has claimed responsibility for a cyber attack against Tata Power that was disclosed by the company less than two weeks ago.
The threat actor has also been observed leaking stolen data exfiltrated prior to encrypting the network as part of its double extortion scheme.
The Mumbai-based firm, which is India's largest integrated power company, is part of the Tata Group conglomerate.
Tata Power had previously disclosed in a filing with the National Stock Exchange of India that an intrusion on the company's IT infrastructure impacted "Some of its IT systems."
According to further details shared by security researcher Rakesh Krishnan, the leak contains personally identifiable information, including Aadhaar identity numbers, permanent account numbers, drivers' license, salary specifics, and engineering drawings.
The latest development is also indicative of the fact that Tata Power likely refused to pay a ransom, prompting the cybercrime gang to publish the siphoned data on its HiveLeaks dark web portal.
News URL
https://thehackernews.com/2022/10/hive-ransomware-hackers-begin-leaking.html
Related news
- Wanted Russian Hacker Linked to Hive and LockBit Ransomware Arrested (source)
- North Korean govt hackers linked to Play ransomware attack (source)
- North Korean hackers pave the way for Play ransomware (source)
- US government, energy sector contractor hit by ransomware (source)
- Major energy contractor reports 'limited' access to IT after ransomware locks files (source)
- Romanian energy supplier Electrica hit by ransomware attack (source)
- Lynx ransomware behind Electrica energy supplier cyberattack (source)