Ransomware “Nefilim” Threatens To Leak Data Of Victoria’s Secret
Ransomware “Nefilim” Threatens To Leak Data Of Victoria’s Secret
May 6, 2020
Ransomware “Nefilim” Threatens To Leak Data Of Victoria’s Secret
Ransomware “Nefilim” Threatens To Leak Data Of Victoria’s Secret
May 6, 2020

The “Nefilim” ransomware threatens to leak data of Victoria’s Secret if the demands are not met. Attackers are threatening if the company fails to make the required payments.

It has been reported by ITNews that Australian logistics giant Toll Group suffered its second ransomware attack so far this year, with this type of ransomware (Nefilim).

However, Toll Group had shut down its IT system after detecting “unusual activities.” The company responsible for delivering many hundreds of thousands of parcels per day confirmed that the Nefilim ransomware attack was unrelated to the one experienced earlier this year.

It has been analyzed that Toll Group is taking a hard line by assuring the media that it would not pay the ransom, as with the first attack suffered in early 2020. It’s moving to manual processes to get the system moving again.

Likewise, it has also been reported by Sky News that Beyonce and Victoria’s Secret Sri Lanka-based lingerie maker, MAS Holdings was also attacked, with the latest information indicating the attempted extortion is also from Nefilim.

ALSO READ :  NASAA Says Cryptocurrency Investment Is Among The Top Five Investor Threats For 2020

As per the report, the criminal group claims to have stolen 300GB of private files and posted some of the allegedly stolen documents online as evidence.

Sky News reported that hackers could potentially seek to exploit the breach to target the company’s commercial partners.

MAS Holdings declined to comment on whether it had alerted its partners or if any of their data had been affected.

The company said:

“MAS is constantly reviewing its security posture and threat actors do attempt to penetrate our network at times. We also adopt best practices in line with industry standards in managing such threats.”

Brett Callow, the Threat Analyst at Emsisoft, gave additional details regarding the attack:

“Exfiltrating data providers the cybercrime groups with additional leverage to extort payment and also add them with additional monetization options. Should the company not pay, the stolen data can be sold, traded, or for spear phishing attacks on other organizations. In fact, the actors may do that whether or not the company pays.”

Callow said that the analysis revealed that there is clear evidence that data stolen in these attacks has been sold to the targeted company’s competitors, sold and traded on the dark web, used to spear-phish, and used for identity theft.

ALSO READ :  Binance CEO Changpeng Zhao Predicts $2 Trillion Market Cap For Bitcoin As Donald Trump Talks Trillion

However, cybercriminals stated that they obtained 300 GB of private files from MAS Holdings, and as evidence, they had already published some stolen documents online.

Similarly, Callow believes that such type of ransomware is showing a “growing trend” within the cybercrime world.

He said:

“The first group to steal and publish data was Maze at the end of last year. Since then, multiple other groups have adopted the same strategy, so it’s a strategy which obviously works. In one case, the Maze group asked for $2 million: $1 million to decrypt the data plus an additional $1 million to destroy the stolen copy. The amount of the demand will vary from victim to victim, and from case to case.”

Thus, ransomware attacks over the past week affected various industries during the pandemic.

Source: Cointelegraph | Image: TechRadar


Crypto News Point a news platform of Digital Notice Media Labs is primarily a regular publication of information, commentary and articles focused extensively on fintech, blockchain technology, cryptocurrency, blockchain-based tokens, cryptocurrency market trends, and trading strategies. We do not provide individually tailored investment advice and does not take a subscriber’s or anyone’s circumstances into consideration when discussing investments, nor is Crypto News Point registered as an investment adviser or broker-dealer in any jurisdiction. Information contained herein is not an offer or solicitation to buy, hold, or sell any digital assets.

Affiliate Disclosure: To help support the work we do here at CNP, we often link to products and deals from around the web. Should you buy some of these, we may get a portion of the sale.

We in generally gather content from the major websites. In every article there is always a clear link and attribution to the source publication. If you have any issue with any of our published content taken from your site, kindly let us know so that we can take appropriate action. In any case, the content of the pages of this website is for your general information and use only. It is subject to change without notice.

You May Also like

Money on Chain Launches TEX With A Unique Twist

Money on Chain Launches TEX With A Unique Twist

Money on Chain (DeFi protocol), a lending platform and stablecoin issuer based on Bitcoin (BTC) sidechain RSK, has announced the launch of TEX, an automated token swap platform based on an order book, with a unique...

Ishita Bora

Ishita Bora is a Senior Content Creator at Digital Notice Media Labs with an experience of 1 year. She has completed her Master's Degree in Language and Linguistics in 2019 from Gauhati University, India. Her interest lies in blockchain technology and cryptocurrency space, as she loves writing about blockchain and other blockchain-related articles. Currently, she is working on blockchain-based news, reviews, featured articles, and guides.