BlackCat ransomware monitors trends in the cybercrime world.
The hacker group BlackCat, also known as ALPHV, announced the theft of 1 TB of data from the British law firm Sills & Betteridge . According to the attackers, among the stolen information are confidential customer documents, personal data of employees and other important files. The company was warned that most of the information will be made public if the management does not agree to negotiations within 3 days.
Sills & Betteridge is based in Lincoln and employs 320 people. Since 2007, it has become one of the largest in the north of England, joining and entering into mutually beneficial agreements with many other organizations. So far, representatives have not commented on BlackCat's statements.
The incident fits into a chain of recent cyber attacks on European and North American legal organizations. Earlier this month, the British company Allen & Overy reported a cyber incident, for which the LockBit group claimed responsibility. The American and New York Bar associations faced a similar problem. Logins and passwords from the accounts of approximately 1.5 million lawyers were compromised.
According to Ilya Kolochenko, a cybersecurity professor at Capitol University of Technology, this industry is of particular interest to cybercriminals. Typically, law firms store huge amounts of valuable data from commercial and corporate clients.
The professor notes that unlike banks or medical institutions, law firms are subject to less stringent data protection controls, although they work with information of the same level of confidentiality. It is expected that the number of such attacks will only increase in the near future. It seems that now the representatives of BlackCat have realized that in the legal sphere there is something to "profit from".
BlackCat / ALPHV is a criminal group operating under the RAAS (ransomware-as-a-service) model. They provide their infrastructure, techniques, and software to "colleagues" for a fee.
Hackers became known for a number of high-profile incidents, including cyber attacks on Reddit, Munster University of Technology, Barts Health NHS Trust, the Japanese company Seiko and others.
Recently, the attention of experts was attracted by a non-standard step of the BlackCat group in one of the campaigns. After hacking MeridianLink, an organization specializing in financial software, hackers turned to the US Securities and Exchange Commission (SEC). They said that MeridianLink did not report the cyberattack within 4 business days, as required by the new rules. Only the group did not take into account that these rules will formally come into force only on December 15.
The hacker group BlackCat, also known as ALPHV, announced the theft of 1 TB of data from the British law firm Sills & Betteridge . According to the attackers, among the stolen information are confidential customer documents, personal data of employees and other important files. The company was warned that most of the information will be made public if the management does not agree to negotiations within 3 days.
Sills & Betteridge is based in Lincoln and employs 320 people. Since 2007, it has become one of the largest in the north of England, joining and entering into mutually beneficial agreements with many other organizations. So far, representatives have not commented on BlackCat's statements.
The incident fits into a chain of recent cyber attacks on European and North American legal organizations. Earlier this month, the British company Allen & Overy reported a cyber incident, for which the LockBit group claimed responsibility. The American and New York Bar associations faced a similar problem. Logins and passwords from the accounts of approximately 1.5 million lawyers were compromised.
According to Ilya Kolochenko, a cybersecurity professor at Capitol University of Technology, this industry is of particular interest to cybercriminals. Typically, law firms store huge amounts of valuable data from commercial and corporate clients.
The professor notes that unlike banks or medical institutions, law firms are subject to less stringent data protection controls, although they work with information of the same level of confidentiality. It is expected that the number of such attacks will only increase in the near future. It seems that now the representatives of BlackCat have realized that in the legal sphere there is something to "profit from".
BlackCat / ALPHV is a criminal group operating under the RAAS (ransomware-as-a-service) model. They provide their infrastructure, techniques, and software to "colleagues" for a fee.
Hackers became known for a number of high-profile incidents, including cyber attacks on Reddit, Munster University of Technology, Barts Health NHS Trust, the Japanese company Seiko and others.
Recently, the attention of experts was attracted by a non-standard step of the BlackCat group in one of the campaigns. After hacking MeridianLink, an organization specializing in financial software, hackers turned to the US Securities and Exchange Commission (SEC). They said that MeridianLink did not report the cyberattack within 4 business days, as required by the new rules. Only the group did not take into account that these rules will formally come into force only on December 15.
