Here once again, the Ragnar ransomware operators are seen in action. In this instance, they targeted Brunnerworks & BHivelab which is one of the well-known marketing and advertising company based in America.
Based on the information leaked, it appears the negotiation between the ransomware operators and GST Autoleather failed, which lead to this leak. The ransomware operators tend to have leak multiple confidential and sensitive documents of the company. Below is the snapshot of the message being posted by the ransomware operators-:
The Cyble Research Team has identified and verified the data leak. The data leak includes multiple confidential and corporate operational documents such as the company’s security code review documents, employee’s personal financial details, internal crisis documents, and many more. Below is the snapshot of few files from the lot being leaked by the Ragnar ransomware operators.
About Cyble:
Cyble Inc.’s mission is to provide organizations with a real-time view of their supply chain cyber threats and risks. Their SaaS-based solution powered by machine learning and human analysis provides organizations’ insights to cyber threats introduced by suppliers and enables them to respond to them faster and more efficiently.
Cyble strives to be a reliable partner/facilitator to its clients allowing them with unprecedented security scoring of suppliers through cyber intelligence sourced from open and closed channels such as OSINT, the dark web, and deep web monitoring and passive scanning of internet presence. Furthermore, the intelligence clubbed with machine learning capabilities fused with human analysis also allows clients to gain real-time cyber threat intel and help build better and stronger resilience to cyber breaches and hacks. Due to the nature of the collected data, the company also offer threat intelligence capabilities out-of-box to their subscribers.
