The renowned international media intelligence service, Newton Media A.S., has been targeted by the BlackCat ransomware group, according to recent reports. The cyber attack on Newton Media’s website was discovered by the ThreatMon Threat Intelligence Team. Newton Media, headquartered in Prague, Czech Republic, has been operating for nearly three decades, providing comprehensive media monitoring, analysis, education, and training services with the help of artificial intelligence.
Not much information has been released about the specifics of the cyber attack, such as the type of attack or the ransom demanded by the BlackCat ransomware group. However, the website displayed a message stating that the NewtonOne app was back online, suggesting that the company had experienced an IT incident possibly linked to the alleged cyber attack.
The officials at Newton Media have not yet commented on the ransomware attack or the claims made by the BlackCat group. The Cyber Express has reached out to them for a response and is waiting for their reply.
The ALPHV ransomware group, to which the BlackCat group belongs, has recently been in the news for its innovative and developing tactics. The group’s website added an instructions manual on their leak site on the dark web, providing information about using the Application Programming Interface (API). This API facilitates seamless interaction between software components through request and response protocols.
In addition, the ALPHV developers added sections on their website to create an archive of information about their victims. This archive allows individuals to easily find specific information in an organized manner. The hackers boasted about this feature, stating that users can “fetch updates since the beginning and synchronize each article with your database.”
The BlackCat/ALPHV ransomware group has recently targeted various organizations, including IBL Healthcare, Tempur Sealy, and Estée Lauder. They have also claimed responsibility for cyber attacks on the websites of North East BIC and SEIKO. The group is known for using the Alphv ransomware tool, which it has been using since 2021. They primarily target sectors like healthcare, critical infrastructure, and education.
The hackers from this group have been found to exploit devices using leaked credentials from previous cyber attacks. It is crucial for organizations and individuals to change their credentials regularly, especially if there has been a cyber attack within their network.
To protect against threats from the ALPHV ransomware group, it is recommended to follow certain steps suggested by Bitdefender, a global cybersecurity and threat intelligence platform. These steps include enabling multi-layered ransomware protection, employing tools that detect malware, using phishing email protection, utilizing behavior detection modules, and implementing network threat prevention technology.
It is important to note that this report is based on internal and external research obtained through various sources. The information provided is for reference purposes only, and users are responsible for their reliance on it. The Cyber Express and its affiliates assume no liability for the accuracy or consequences of using this information.
In conclusion, the cyber attack on Newton Media A.S. by the BlackCat ransomware group highlights the ongoing threat of ransomware attacks targeting organizations worldwide. It serves as a reminder for companies to take necessary precautions to protect their systems and data from such attacks.