A Russian ransomware gang is said to have infiltrated a technology company responsible for processing top-secret documents from US intelligence services, such as the FBI.
The infamous group Blackcat, also known as ALPHV, is threatening to release the secret documents if the company Technica does not contact them soon.
Technica is a veteran-owned company that provides technology solutions to support the federal government’s mission to defend and protect America.
ALPHV claimed it stole 300 GB of documents, allegedly including Defense Department contracts and the names, phone numbers and social security numbers of Technica employees. .
The Russian attack comes after an FBI director warned on Wednesday that Chinese hackers are preparing to “wreak havoc” in America.
Russian cyber gang ALPHV reportedly stole 300 GB of top secret and classified US intelligence and FBI documents from Technica Corporation
Cybersecurity analyst and security researcher Dominic Alvieri confirmed that Technica had been hacked, posting a screenshot of ALPHV’s confirmation on X with what appears to be a sample of 29 separate documents obtained by the cyber gang.
The motive behind the alleged attack is unclear and it remains unknown whether it is Kremlin-related.
Technica’s company works to “support the federal government and their mission to support, defend and protect American citizens,” the company said. websitemaking the alleged infringement all the more concerning.
“These types of incidents should not be viewed in isolation,” Brett Callow, a threat analyst at the cybersecurity firm Emsisoft, told the newspaper. Daily dot.
“Exfiltrated data can be combined with information obtained in other attacks and from other sources, meaning breaches could be bigger than they seem.”
Dailymail.com has contacted Technica for comment.
Russian ransomware group ALPHV says it will release its highly secured documents to the public unless Technica Corp makes contact quickly.
Last month, the FBI thought it had successfully shut down ALPHV for good after a battle to seize the dark web leak site and allow more than 500 victims to recover their systems.
‘In disrupting the BlackCat ransomware group, the Department of Justice hacked the hackers again’ said Then-Deputy U.S. Attorney General Lisa Monaco.
“We will continue to prioritize disruption and put victims at the center of our strategy to dismantle the ecosystem that fuels cybercrime,” she added.
But just a day later, ALPHV claimed to have “expropriated” its website from the FBI, indicating an ongoing battle for control of the site.
ALPHV has attacked numerous companies in recent years, even hacking into casinos and shutting down their databases, only promising to release the systems once they receive a large sum of money.
ALPHV has become the second most prolific hacking group in the world, targeting hundreds of computer networks.
When the FBI seized ALPHV’s location, it said in its report search warrant that the ransomware group had attacked more than a thousand victim networks, including “critical infrastructure entities, medical facilities, school districts, law firms, and financial companies” around the world.
The US Department of Justice said global losses from ALPHV ransom attacks “are in the hundreds of millions and include ransom payments, destruction and theft of proprietary data, and costs associated with incident response.”
FBI Director Christopher Wray told the US House Select Committee that the US is at risk from Chinese Communist Party hackers. He said the hackers will “wreak havoc” and “inflict real harm” on Americans
The alleged cyberattack comes as FBI Director Christopher Wray warned that hackers in China are preparing to “wreak havoc” and will “inflict real harm” on Americans.
Wray testified before the House Select Committee on the Chinese Communist Party and called for action against the People’s Republic of China (PRC).
“The PRC’s cyber attack goes far beyond preparing for future conflicts,” he said at the hearing.
“Today, and literally every day, they are actively attacking our economic security, engaging in wholesale theft of our innovation and our personal and corporate data.”
Chinese hackers are reportedly targeting U.S. water treatment plants, electrical infrastructure and oil and natural gas pipelines, Wray testified, adding that the PRC could destroy America if and when it decides to attack.
The Chinese hackers are “working to find and prepare to destroy or degrade the civilian critical infrastructure that keeps us safe and prosperous,” Wray said.
“And let’s be clear: cyber threats to our critical infrastructure represent real threats to our physical security.”