popular ransomware (opens in new tab) The operator claims it has infringed on Ring, an Amazon-owned company that makes smart doorbells with cameras.
According to a new report on Vice’s Motherboard, a group known as ALPHV, popular for their use of the BlackCat crypto-malware, has added a new entry to the leak site next to the Ring logo.
A message posted by the group reads, “There is always the option to leak your data,” hinting that negotiations over the ransom demand are ongoing (or may break down). .
Sensitive customer data?
Amazon has been relatively silent on the matter. In a short statement issued to Motherboard, the company said there were “no indications” that Ring was hit by ransomware.
However, it was confirmed that a third-party vendor was infected with the ransomware, and Ring says it is now engaging with that vendor to learn more about the incident. It also clarified that vendors do not have access to customer records.
There are currently no detailed reports on what kind of data ALPHV is believed to be holding and threatening to release. Allegedly, Amazon employees were instructed to keep quiet. Motherboard reported that “one person” notified Amazon employees of the incident via his Slack message, instructing them to “do not discuss anything about this,” and that “the appropriate security team ‘ was involved.
There are still many unanswered questions about this case. If it wasn’t Ring that was compromised, who are the third parties? What data does ALPHV hold? was involved? What kind of ransom is demanded and how much does ALPHV expect to receive in exchange for data and decryption keys?
Until ALPHV leaks data or the targeted company files a report with the SEC, we won’t know for sure.
Via: Vice (opens in new tab)
