The Altice group, parent company of SFR, has been hit by Hive ransomware, a regular in attacks against large companies.
The site specialized in computer security RedPacket Security tells us that the Altice group, owner of the operator SFR, has been the victim of a ransomware attack from the Hive group. The attack, revealed a few days ago, is however not the subject of any communication from the telecom group and European media.
Altice, a worrying silence?
According to the website RedPacket Securitythe ransomware attack dates back to August 9, almost a month ago, but the Hive group didn’t claim it until just over two weeks later, on August 25.
So far, Altice has not responded through official channels. We have tried to contact the company to find out more, without success so far.
The extent of the attack remains unknown for the moment, and it is not known what data the hackers were able to reach. What is certain is that Hive is customary of the fact. The group behind the ransomware has indeed specialized in attacks against large companies.
Hive makes weight victims
Hive was first spotted in 2021, and it can already boast some glorious feats. At the end of last year, the “German FNAC / Darty”, MediaMarkt, had seen its computer system neutralized by this same ransomware, which claimed 43 million euros. The German group was plagued for several weeks by the effects of the attack. The German operator T-Mobile, present internationally like Altice, was also the target of Hive about a year ago, compromising the data of tens of millions of users.
The Hive group has become one of the most lucrative ransomware gangs in the world, often going after financial or healthcare players. A few months ago, it would have taken a new step by updating its software, migrating the code to the Rust programming language, developed by Mozilla Research for ten years, which allows it even more complex encryption.
Hive makes itself known using double extortion, which involves exfiltrating data and then threatening the victim with selling it and/or making it public. This strategy was launched in response to many companies who thought they had taken the lead in creating and storing multiple copies of their data.
Source : RedPacket Security
5