The LockBit ransomware group has struck again, claiming two more high-profile victims in their recent cyberattack – Talon International Inc and Baldessari & Coster LLP. This attack has put the security and confidentiality of critical information at risk, as the hackers claim to have accessed a massive amount of sensitive data from the compromised organizations.
According to the ransomware group’s post, Talon International Inc is facing the potential exposure of a staggering 300GB of sensitive data, including detailed information about clients, products, employees, financial records, and various working documentation. The hackers have set a deadline of 02 February 2024, 11:41:51 UTC, adding urgency to the situation.
Similarly, Baldessari & Coster LLP, a full-service Certified Public Accounting firm licensed in NY, is also under threat. The ransomware group posted information about the firm’s certification and set a deadline of 21 February 2024, 11:01:09 UTC for compliance with their demands. This situation has raised concerns about the security of both organizations and the potential impact of this cyberattack on their operations.
Upon investigating the official websites of the targeted companies, suspicions arise. While Talon International’s website remains fully functional and accessible, Baldessari & Coster LLP’s site is not accessible. This discrepancy raises questions about the validity of the claims made by LockBit.
To verify the authenticity of the claims, The Cyber Express Team attempted to reach out to the targeted organizations. However, as of writing this report, no official response has been received. Whether the ransomware group’s actions are a mere tactic to gain attention, a technical glitch, or a genuine security breach remains unclear until official statements are released. Until then, the veracity of these claims remains unverified.
This incident follows LockBit’s pattern of targeting entities and demanding ransom within a specified timeframe. In January 2024, the ransomware group announced three new victims – TV Jahn Rheine in Germany, Home Waremmien in Belgium, and Marxan S.L. Despite the announcement, the websites of these alleged victims showed no immediate signs of a LockBit ransomware attack.
Speculations suggest that the threat actor may have focused on compromising the databases rather than the front-end of the websites, aligning with previous attacks on companies like Jasman Automotive and Subway. Adding to the complexity, LockBit has recently listed a new organization based in Taiwan, Province of China, with 1,001-5,000 employees as its victim, operating in the appliances, electrical, and electronics manufacturing sectors.
In light of these developments, organizations and cybersecurity experts are urged to remain vigilant and take necessary precautions to protect their systems and data from potential cyber threats. It is essential for companies to invest in robust cybersecurity measures and stay informed about the latest trends in cybercrime to prevent falling victim to ransomware attacks.
It is important to note that this report is based on internal and external research obtained through various means, and the information provided is for reference purposes only. Users bear full responsibility for their reliance on it, and The Cyber Express assumes no liability for the accuracy or consequences of using this information. The cybersecurity landscape is constantly evolving, and it is crucial for businesses to adapt and strengthen their defenses against cyber threats.