Townsquare Media, a well-known American radio network and media company, is the latest victim of a cyber attack. The ALPHV ransomware group has claimed responsibility for the attack, adding Townsquare Media to their growing list of victims. The hacker collective, known for its malicious activities since late 2021, has announced that they have gained unauthorized access to a significant amount of data belonging to Townsquare Media.
According to the ALPHV ransomware group, they possess a staggering 251GB of data belonging to the company. The data includes files sourced from Townsquare Media’s servers and workstations, with a specific focus on those created within the past year. The ALPHV ransomware group has made their claim public, raising concerns about the potential exposure of sensitive information.
In response to the alleged data breach, The Cyber Express reached out to Townsquare Media for more information. However, the company has not provided an official response at this time. It remains to be seen how Townsquare Media will address and mitigate the impact of this cyber attack.
The severity of the data breach is evident in the 19 attachments included in the threat actor’s post. Falcon Feed, a threat intelligence service, shared the post on Twitter, drawing attention to the alleged breach. Two images included in the post further showcased the threat actor’s claim of possessing a substantial data trove.
Notably, the ALPHV ransomware group has issued an ultimatum to Townsquare Media. They have demanded that the company establish contact within a week to resolve the alleged misunderstanding and prevent the public release of their data. This ultimatum adds another layer of complexity to the situation, particularly considering that Townsquare Media is currently under investigation by WeissLaw LLP for possible breaches of fiduciary duty and violations of federal securities laws.
This cyber attack on Townsquare Media is not the first time the media industry has faced such incidents. In 2019, the company experienced a similar attack where “crypto locker encryption malware” was used to disrupt its operations. The recent breach further highlights the vulnerabilities faced by media companies in the digital age.
The impact of the cyber attack is already being felt in several affected markets. The 2019 crypto locker encryption malware attack targeted various Townsquare Media clusters, including those in Shreveport, LA, Boise, Cedar Rapids, and Portsmouth, NH. The Shreveport LA cluster, in particular, experienced significant difficulties, with non-functional automation triggers and imaging systems, as well as adverse effects on commercials. However, some local shows managed to stay on-air by playing music from alternative sources like YouTube.
This incident mirrors a previous attack on Radio One’s stations in late February, where the internal systems of the stations were compromised, leading to weeks of recovery efforts and the rebuilding of file systems. These incidents serve as a reminder of the ongoing threats faced by media companies and the need for robust cybersecurity measures.
As the investigation into the Townsquare Media data breach continues, it is essential for the company to take immediate action to secure its systems, protect sensitive data, and prevent further damage. It remains to be seen how Townsquare Media will respond to the demands of the ALPHV ransomware group and address the potential consequences of this cyber attack.