CDW Corporation, a provider of technology products and services, has become the latest target of the LockBit ransomware gang. The alleged data breach was announced by the hacker collective on their dark web channel, accompanied by a deadline for their threats against the company.
The LockBit ransomware gang claimed to have successfully carried out the data breach and posted a message on their dark web portal. The message included a countdown of just over 16 days, indicating a deadline of September 21, 2023, for their actions.
The CDW data breach claim is concerning, as the LockBit ransomware gang has a history of following through on their threats. They have utilized similar techniques to pressure other victims in their cyber attacks. However, they have not provided specific details about the files and folders affected in this particular breach. It is worth noting that the CDW website is currently operational and shows no signs of an attack.
CDW Corporation, listed on Nasdaq, is a prominent provider of information technology solutions. It serves a diverse clientele, including businesses, government agencies, educational institutions, and healthcare providers in the United States, the United Kingdom, and Canada. While there is no previous record of a specific data breach at CDW, the company has faced controversies in the past.
In one instance, Contour Data Solutions initiated legal action against CDW, Gridforce, and NAES, accusing them of stealing intellectual property. Contour claimed that CDW’s involvement in a ‘lift and shift’ operation constituted the unlawful acquisition of their IT system.
The Cyber Express reached out to CDW for insights into the current threat posed by the LockBit ransomware gang. However, there has been no official response or statement from CDW at this time.
The LockBit ransomware gang has a notorious reputation in the cyber threat landscape. Just last month, they targeted seven victims, including UK-based Zaun and the DIFC courts in Dubai. Law firms Siam Premier in Bangkok and Luterkort in Sweden were also victims of their ransomware attacks.
Operating as a ransomware-as-a-service (RaaS) group, LockBit offers encryption services to affiliates who target organizations. They have a history of exposing victim data on their ransomware leak site. Originally known as “ABCD” ransomware, the group transitioned to RaaS in January 2020 and established a dedicated website for announcing attacks and disclosing data of non-compliant victims.
It is important to note that the information provided in this report is based on internal and external research obtained through various means. Users should exercise caution and bear full responsibility for their reliance on this information as The Cyber Express assumes no liability for its accuracy or consequences.
In conclusion, the CDW data breach by the LockBit ransomware gang is a concerning development. CDW Corporation, a prominent provider of technology products and services, is now faced with the threat of their data being published by the hacker collective. As the deadline approaches, it remains to be seen how CDW will respond to this cyber attack.