Update as of 07/01/2020: The Maze ransomware operators claim to release the data leak part 1 (around 3.6Gb) of LG Electronics-:
But for now, the leaked data seems to password-protected, and to access the data one needs a password which the ransomware operators state to provide later. As per now, this leak seems to be another warning message for the company to comply with the terms of Maze.
Update as of 06/25/2020: As part of our regular darkweb monitoring, our researchers came across the data leak of LG Electronics been published by the Maze ransomware operators. Just after the WorldNet Telecommunications, the LG electronics fall as a victim of the Maze ransomware operators.
Currently, LG Electronics is part of the fourth-largest family-owned business conglomerate in South Korea (LG Corporation) and in 2014 global sales reached $55.91 billion (₩ 59.04 trillion), LG comprises four business units: Home Entertainment, Mobile Communications, Home Appliances & Air Solutions, and Vehicle Components. Currently, the company has ongoing 128 operations worldwide and employing 83,000 people.
Below is the snapshot of the data leak been posted on the ransomware’s website-:
Three days back the maze ransomware released a press release in which they warned the companies to not try to recover information themselves because firstly they state that the maze locker can’t be decrypted without the assistance of maze team, and secondly companies would incur double or even four times the money and still would be standing in the same situation. Lastly in the press release, they mentioned about data leak of LG Electronics to take place soon, which has occurred now.
As per now, the ransomware operators have only released three screenshots as proof of the data breach. One of the screenshots seems to consist of LG Electronics official firmware or software update releases that assist their hardware products to work more efficiently. While the other screenshot seems to list out the source code of its products, as stated by Maze in their recent press release. Below are the screenshots been released by the ransomware operators-:
Lgpartner.com is appears to be owned by LG per the whois record as below:
It seems that if no appropriate action is been taken by the company then more data leaks might be coming soon.
We recommend people to:
- Never share personal information, including financial information over the phone, email or SMSs
- Use strong passwords and enforce multi-factor authentication where possible
- Regularly monitor your financial transaction, if you notice any suspicious transaction, contact your bank immediately
- Turn-on automatic software update feature on your computer, mobile and other connected devices where possible and pragmatic
- Use a reputed anti-virus and internet security software package on your connected devices including PC, Laptop, Mobile
Cyble is a US-based cyber threat intelligence company with the express mission to provide organizations with real-time views of their supply chain cyber threats and risks.