BingoTingo Best Place To Gain Knowledge & WP Theme
A popular ransomware (opens in new tab) operator claims to have compromised Ring, the Amazon company that builds smart doorbells with cameras.
A new report on Vice’s motherboard states that the group known as ALPHV, popular for using the BlackCat encryption malware, has added a new entry to its leak site, which features Ring’s logo next to it.
A message posted by the group says, “There is always an option to let us leak your data,” hinting that ransom-demand negotiations are ongoing (or could have failed).
Sensitive customer data?
Amazon is relatively quiet on the matter. In a brief statement to Motherboard, the company said it has “no indications” that Ring experienced a ransomware attack.
However, it was said that a third-party vendor succumbed to ransomware and that Ring is currently working to learn more about the incident. It also clarified that the supplier has no access to customer data.
Currently, there are no reports indicating what kind of data ALPHV supposedly possesses and threatens to release. Reportedly, Amazon employees were instructed to be quiet. Motherboard reported that “one person” notified Amazon employees of the incident via a Slack message and instructed them “not to discuss anything about this,” adding that the “proper security teams” were engaged.
There are still plenty of unanswered questions about this incident. If Ring isn’t the one compromised, who is the third party? What kind of data does ALPHV keep? How did the group compromise the target network and was there malware or social engineering involved? What are the ransom demands and how much money does ALPHV expect to get in exchange for the data and decryption key?
Until ALPHV leaks the data, or the targeted company files a report with the SEC, we won’t know for sure.
Via: Vice (opens in new tab)
