HomeSecurity ArchitectureBaguette bandits launch new ransomware attack, causing humiliation

Baguette bandits launch new ransomware attack, causing humiliation

Published on

spot_img

Hellcat, a notorious ransomware gang that made headlines by demanding payment in baguettes from Schneider Electric after compromising their systems, has been wreaking havoc on various industries since its emergence in mid-2024. Specializing in targeting government, education, energy, and other critical sectors, Hellcat utilizes a ransomware-as-a-service model, providing affiliates with the necessary tools and infrastructure in exchange for a cut of the profits.

One of the key tactics employed by Hellcat is double extortion, a strategy increasingly favored by ransomware groups. This involves not only encrypting a victim’s data but also threatening to leak sensitive information if the ransom demands are not met. The group has gained notoriety for targeting high-profile organizations and using humiliation as a psychological tool against their victims.

In the case of the Schneider Electric attack, Hellcat not only encrypted the company’s data but also claimed to have stolen 40GB of sensitive information. To add insult to injury, the group demanded $125,000 in baguettes as ransom. This brazen demand was intended to mock the company and demonstrate the group’s willingness to go to extreme lengths in their extortion efforts.

Moreover, Hellcat managed to exploit a previously unknown vulnerability in Schneider Electric’s Atlassian Jira system to gain access to their infrastructure. This tactic of exploiting zero-day vulnerabilities in enterprise tools is a common strategy employed by the group to infiltrate their targets and carry out their ransomware campaign.

In addition to targeting Schneider Electric, Hellcat also claimed responsibility for breaching Jordan’s Ministry of Education and leaking confidential records from Tanzania’s College of Business. The group’s activities extended to attempting to sell root access to a US university with a significant revenue stream and compromising a US telecoms company, Pinger, by stealing a vast amount of data and threatening to release it unless a ransom was paid.

Despite these high-profile incidents, the organizations affected by Hellcat’s attacks remain undisclosed, leaving the public in the dark about whether the ransom demands were met. The group’s relentless campaign continued into December, with endeavors to sell access to servers of a French energy distribution company and an Iraq city government, underscoring their disruptive intentions towards critical services.

As threat researchers continue to monitor Hellcat’s activities and their impact on various industries, it is evident that the group’s use of sophisticated tactics and aggressive extortion methods pose a significant threat to cybersecurity on a global scale. The evolution of ransomware groups like Hellcat highlights the urgent need for enhanced cybersecurity measures and vigilance to combat the ever-growing threat of cybercrime in today’s digital landscape.

Source link

Latest articles

Ransomware payment value decreased by over 30% in 2024

After a year of record payments to cyber criminals, the tide seems to be...

Data breach at Vorwerk: Hackers steal Thermomix user data

In a recent cybersecurity breach, hackers have managed to gain access to user data...

Behavioral Analytics in Cybersecurity: Identifying the Primary Beneficiaries

In the realm of cybersecurity, the cost of a data breach hit a new...

Britain Reportedly Requests Apple to Create Backdoor

In a shocking turn of events, the British government has reportedly issued a secret...

More like this

Ransomware payment value decreased by over 30% in 2024

After a year of record payments to cyber criminals, the tide seems to be...

Data breach at Vorwerk: Hackers steal Thermomix user data

In a recent cybersecurity breach, hackers have managed to gain access to user data...

Behavioral Analytics in Cybersecurity: Identifying the Primary Beneficiaries

In the realm of cybersecurity, the cost of a data breach hit a new...