The shipping company Corsica Ferries has just announced that it has filed a legal complaint following a computer attack on Tuesday, November 7. The company based in Bastia was the victim of an intrusion at the end of October, a hack which then led to the temporary shutdown of some of the servers.
It turned out to be the Alphv cybercriminals. The latter in fact published a new entry on their site on Sunday evening relating to Corsica Ferries, specifying that they had seized 101 gigabytes of computer files. “They have decided not to cooperate, do not hesitate to download and inspect the data,” the criminals say about their victim.
Ransom demanded
As Corsica Ferries confirms, the company did not want to give in to the extortion attempt by cybercriminals, who demanded a ransom of an undisclosed amount. “Investigations are underway to list the stolen data and content in order to individually inform the people, service providers and third parties concerned,” explains the company.
If the cybercriminals claim to have stolen banking information and internal documents, Corsica Ferries specifies that its customers’ banking data are not affected. These transactions are diverted “on the banks’ networks”, “the company does not have access to them”, she explains.
A group active for two years
“Investigations to date do not show any other data leaks or intrusion into other Corsica Ferries systems,” finally adds the company, assisted in this crisis by Orange cyberdefense, a specialist law firm and the ‘Yes. The guardian of personal data, the CNIL, has also been notified, as provided for by the regulations.
Also known as BlackCat, Alphv is ransomware open to affiliates since the end of 2021. This group of cybercriminals was distinguished by the large share of ransoms offered to affiliates and by the programming language used to code the ransomware, Rust, allowing it to target both Windows and Linux systems.