Darktrace now says it wasn’t hacked after all

Hackers seem to have confused Darktrace with another company entirely

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

Darktrace has revealed that it wasn’t breached by LockBitransomwareafter all, following initial fears that the firm had suffered a damaging attack.

An internal investigation found no evidence of compromise, with company CISO Mike Beck publishingan updated statementregarding LockBit’s previous announcements of the attack, saying Darktrace operates uninterrupted and that its systems, as well as those of its affiliates, remain secure.

“We have completed a thorough security investigation following yesterday’s tweets by LockBit claiming they had compromised Darktrace’s internal systems,” the announcement reads. “We can confirm that there has been no compromise of our systems or any of our affiliate systems. Our service to our customers remains uninterrupted and is operating as normal and no further action is required.”

Wrong place, fake data

In its report,BleepingComputerargues that LockBit’s operators might have made a mistake, confusing Darktrace with a threat intelligence company called DarkTracer. This firm reported on a ransomware attack from LockBit, which ended up stealing fake customer data.

“The reliability of the RaaS service operated by LockBit ransomware gang seems to have declined,” the company said. “They appear to have become negligent in managing the service, as fake victims and meaningless data have begun to fill the list, which is being left unattended.”

Saks Fifth Avenue becomes latest Clop ransomware victim>Hatch Bank says 140,000 customers had data stolen after breach>Check out the best ID theft protection solutions right now

It seems as leaving bogus data for hackers to steal and feel good about themselves is growing into a real trend. Less than a month ago, threat actors Clop used a flaw in the GoAnywhere file-transfer service to compromise retailer Saks Fifth Avenue withmalwareand steal its data. It turned out - the information they had stolen was fake.

“Fortra, a vendor to Saks and many other companies, recently experienced a data security incident that led to mock customer data being taken from a storage location used by Saks,” a Saks spokesperson told the publication. “The mock customer data does not include real customer or payment card information and is solely used to simulate customer orders for testing purposes.”

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

Via:BleepingComputer

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

This new malware utilizes a rare programming language to evade traditional detection methods

A new form of macOS malware is being used by devious North Korean hackers

Arcane season 2 confirms the hit series isn’t just one of the best Netflix shows ever made – it’s an animated legend that’ll stand the test of time