Security News > 2023 > April > Fake ransomware gang targets U.S. orgs with empty data leak threats
Fake extortionists are piggybacking on data breaches and ransomware incidents, threatening U.S. companies with publishing or selling allegedly stolen data unless they get paid.
They have also impersonated some ransomware and data extortion gangs in emails and claimed to be the authors of the intrusion, stealing hundreds of gigabytes of important data.
BleepingComputer found another email from Midnight Group, professing that they were the authors of the data breach and that they stole 600GB of "Essential data" from the servers.
Arete says that at least 15 of their current and previous clients received fake threats from the Midnight Group, which supported their data theft claims with vague details.
Ransomware actors often sell the data they steal from victims even when they get paid.
If Midnight Group has access to the markets and forums where this data is traded or sold they could learn about ransomware victims that have yet to disclose the cyberattack.
News URL
Related news
- UnitedHealth confirms it paid ransomware gang to stop data leak (source)
- Shopping platform PandaBuy data leak impacts 1.3 million users (source)
- Asia-Pacific Ransomware Threats Depend on Country and Sector, Says Rapid7 (source)
- Week in review: 73M customers affected by AT&T data leak, errors led to US govt inboxes compromise (source)
- Home Depot confirms worker data leak after miscreant dumps info online (source)
- Chipmaker Nexperia confirms breach after ransomware gang leaks data (source)
- Cerebral to pay $7 million settlement in Facebook pixel data leak case (source)
- UK data watchdog wants six figures from N Ireland cops after 2023 data leak (source)