Telos, a renowned cybersecurity service provider based in Virginia, is reportedly the victim of a cyber attack carried out by the notorious CL0P ransomware group. Cybersecurity analyst Dominic Alvieri took to Twitter to share two posts detailing the incident. The cyber attack on Telos has potential implications for its clients, including Fortune 500 companies, the U.S. Department of Defense (DoD), various federal intelligence and civilian agencies, as well as NATO allies. The Cyber Express reached out to Telos for confirmation of the attack but has not received an official response yet. The threat actor behind the attack claimed that they targeted Telos due to the company’s alleged disregard for customer security.
While awaiting Telos’ official statement, The Cyber Express has been trying to determine whether this attack could be linked to the MOVEit vulnerability hacking campaign previously launched by the CLoP ransomware group. This particular group is known for its sophisticated cyber attacks, often targeting organizations in pursuit of financial gain through ransom demands. If Telos indeed fell victim to the CLoP ransomware group, the consequences could be severe given the nature of Telos’ clientele and their reliance on the company’s cybersecurity services. BetterCyber, a reputable threat intelligence service, has also reported on the alleged cyber attack against Telos, adding to the growing concern.
The cyber attack on Telos puts sensitive data at risk, and considering the company’s clientele, the stolen data could potentially be used for malicious purposes. Telos has an extensive list of clients that includes defense contractors in the United States. The U.S. Department of Defense faces a range of challenges each year, including threats and attacks targeting its weapons systems, logistics networks, information and communications technology, and critical systems. Telos has been actively involved in military strategies with the military and numerous defense agencies in the U.S.
Last year, researchers from Securonix discovered an undisclosed operation codenamed STEEP#MAVERICK, which targeted various European weapons contractors in recent months. Additionally, the Cybersecurity and Infrastructure Security Agency (CISA) released a detailed report on Russian state-sponsored cyber actors targeting U.S. cleared defense contractors (CDCs) since January 2020, with the aim of obtaining sensitive U.S. defense information and technology. The FBI, NSA, and CISA have observed these cyber attacks, which have affected both large and small CDCs and subcontractors supporting the U.S. Department of Defense and Intelligence Community. These attacks are just the tip of the iceberg, and the Telos cyber attack may reveal more information as the story progresses.
The Cyber Express will continue to closely monitor this developing story and provide updates as new information becomes available. This alleged cyber attack on Telos serves as a reminder that no organization is immune to cyber attacks, emphasizing the importance of prioritizing cybersecurity in the digital age.
Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for relying on it. The Cyber Express assumes no liability for the accuracy or consequences of using this information.