Once again, the Ragnar ransomware operators traps a big fish in their trap. In this instance, they targeted Birch Communications LLC which is the leading integrated cloud solutions provider.
Birch Communication was been founded in the year 1996. Birch Communications is an American provider of IP-based communications, network broadband, cloud computing, and information technology services to small, mid-sized, enterprise and wholesale business customers in the United States, Canada, and Puerto Rico. Founded in 1996 in the wake of the 1996 Telecommunications Act, several years later the company began acquiring other telecom companies in an effort to increase its network size and service offerings. Birch Communications raised $77.5 million in funding in 2011 and $110 million in funding in 2012 after it financed a new $90 million facility. Atlanta Business Chronicle named Birch one of Atlanta’s Top 50 Private Companies in 2013, and that year company revenues were approximately $207 million. Birch Communications also acquired Cbeyond in 2014for $323 million, which expanded Birch’s cloud service offerings. In September 2014, Birch announced that it had made 24 acquisitions, worth more than $500 million. Birch has regional operations centers in Atlanta, Macon, Georgia, and Emporia, Kansas with approximately 1,400 employees. Tony Tomae serves as Birch’s president and chief executive officer.
The ransomware operators have posted a list of files highly sensitive and confidential files and data of the company. As per the Cyble Research Team, the data breach attack may have taken place in the month of March 2020, and as the company could not make an agreement with the ransomware operators, this leads to the data leak of their database.
Below is the message posted by Raganr ransomware operators on their blog-:
Below are few snapshots from the large lot being leaked by the Ragnar ransomware operators-:
Cyble Inc.’s mission is to provide organizations with a real-time view of their supply chain cyber threats and risks. Their SaaS-based solution powered by machine learning and human analysis provides organizations’ insights to cyber threats introduced by suppliers and enables them to respond to them faster and more efficiently.
Cyble strives to be a reliable partner/facilitator to its clients allowing them with unprecedented security scoring of suppliers through cyber intelligence sourced from open and closed channels such as OSINT, the dark web and deep web monitoring and passive scanning of internet presence. Furthermore, the intelligence clubbed with machine learning capabilities fused with human analysis also allows clients to gain real-time cyber threat intel and help build better and stronger resilience to cyber breaches and hacks. Due to the nature of the collected data, the company also offer threat intelligence capabilities out-of-box to their subscribers.