9th October 2024

A brand new ransomware operation has began to leak info it claims has been stolen from organisations it has compromised around the globe.

In current days Valencia Ransomware has posted on its darkish net leak web site’s so-called “Wall of disgrace” hyperlinks to gigabytes of downloadable info that has seemingly been exfiltrated from a Californian municipality, a pharmaceutical agency, and a paper producer.

The alleged victims embody the Metropolis of Pleasanton in California (the place the attacker claims to have stolen 283GB of delicate info), Malaysian pharmaceutical agency Duopharma Biotech (25.7GB), Indian paper producer Satia (7.1GB), and Bangladeshi medication maker Globe Prescribed drugs (200MB).

There are moreover claims that Spanish style large Tendam has additionally been hit by the Valencia group. If that’s correct, it’s notably unlucky, because the agency was additionally reportedly hit by the Medusa ransomware earlier this month.

There was hypothesis on-line that among the Valencia group’s assaults could also be linked to the exploitation of essential vulnerabilities within the WhatsUp Gold networking monitoring software program from Progress.

Vulnerabilities that made it doable to takeover WhatsUp Gold admin accounts have been found and responsibly disclosed in Might, and proof-of-concept exploit code was printed on the finish of August.

Inside hours of the proof-of-concept code being printed, safety corporations have been reporting proof that the flaw was being actively exploited by cybercriminals.

On its leak webpage, Valencia describes the compromised organisations thus:

“Here’s a record of firms that do not care about buyer privateness.”

What they actually imply, after all, is here’s a record of firms who’ve chosen to not pay a ransom after falling sufferer to a prison act.

It is true that paying ransoms incentivises cybercriminals and will increase the danger of future assaults towards your organization and others.

Nevertheless, when confronted with the potential devastation to what you are promoting and the livelihoods of your staff, companions, and purchasers, your organization might really feel it has no selection however to pay. No matter your determination, it is important to report cybersecurity assaults to legislation enforcement and help them of their investigation.

No-one ought to relaxation straightforward in terms of ransomware. With extra assaults making extra money than ever earlier than there isn’t any indication that the ransomware incidents are more likely to decline any time quickly.

Listed here are 30 ransomware prevention suggestions that may assist stop a ransomware an infection from succeeding in your organisation.


Editor’s Be aware: The opinions expressed on this visitor creator article are solely these of the contributor and don’t essentially mirror these of Tripwire.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.