A ransomware gang claims it has breached Ring and is threatening to leak data
“There’s always an option to let us leak your data,” the attackers say
When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.
A popularransomwareoperator claims to have compromised Ring, theAmazon-owned company that builds smart doorbells with cameras.
A new report on Vice’s Motherboard states that the group known as ALPHV, popular for its use of the BlackCat encryptormalware, added a new entry to its leak site, next to which is Ring’s logo.
A message posted by the group says “There’s always an option to let us leak your data,” hinting that the negotiations over the ransom demand are ongoing (or could have broken down).
Sensitive customer data?
Amazon is staying relatively silent on the matter. In a short statement issued to Motherboard, the company said it has “no indications” that Ring experienced a ransomware attack.
This devious attack could be the next evolution of ransomware>This ransomware gang lets you rummage around their stolen data>These are the best endpoint protection services right now
However, it did say that a third-party vendor did succumb to ransomware and that Ring is currently engaged with it in an effort to learn more about the incident. It also clarified that the vendor doesn’t have access to customer records.
Currently, there are no reports detailing what kind of data ALPHV is supposedly holding and threatening to release. Allegedly, Amazon’s employees were instructed to stay quiet. Motherboard reported that “one person” notified Amazon’s employees of the incident via a Slack message and instructed them “do not discuss anything about this”, adding that the “right security teams” were engaged.
There are still plenty of unanswered questions about this incident. If Ring isn’t the one that was compromised, who is the third party? What kind of data does ALPHV hold? How did the group compromise the target network, and was any malware or social engineering involved? What are the ransom demands, and how much money does ALPHV expect to get in exchange for the data and the decryption key?
Are you a pro? Subscribe to our newsletter
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
Until ALPHV leaks the data, or the targeted company files a report with the SEC, we won’t know for sure.
Via:Vice
Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.
Windows PCs targeted by new malware hitting a vulnerable driver
Dangerous Android banking malware looks to trick victims with fake money transfers
Apple iMac 24-inch M4 (2024) review: the best, and most colorful, all-in-one computer levels up
