Lyon Terminal, Lyon’s main multimodal platform, hacked by hackers who call themselves “honest”


Alexandre Boero

Clubic news manager

April 16, 2024 at 7:56 a.m.

5

Cargo containers at the railway container terminal © SkazovD / Shutterstock

Cargo containers at the railway container terminal © SkazovD / Shutterstock

The 8base ransomware group claimed responsibility for a cyberattack against the Lyon Terminal platform on Monday. Accounting, personal and confidential data were allegedly recovered by the hackers.

Euro-regional multimodal platform, Lyon Terminal has been trapped by cybercriminals. The entity, which is both a river and rail terminal transporting both maritime containers and semi-trailers, is a victim of the 8base group. Its members have the particularity of considering themselves as “ honest pentesters ”, in other words ethical hackers. What data did they get their hands on?

Extensive data from Lyon Terminal exfiltrated

The 8base group says it has exfiltrated a large amount of personal data from Lyon Terminal. Cybercriminals talk about “ invoices, receipts, accounting documents, personal data, employment contracts, confidential information, confidentiality agreements and personal files ” and others.

The ransomware cyberattack, confirmed in particular by the specialist Valéry Marchive and the cyberdefense search engine Onyphe, only dates back a few days at most.

What is certain is that the pirates are giving the Lyon Terminal platform 72 hours, until April 19, to meet its demands. The group explains that it systematically offers its victims a Bitcoin wallet to facilitate transactions.

Screenshot of the 8base group page, and the file created on Lyon Terminal © Clubic

Screenshot of the 8base group page, and the file created on Lyon Terminal © Clubic

A group of hackers attacking companies that are careless with their IT security

The 8base group today specializes in data leaks, but also in the distribution of ransomware. If we trust its website, its objective is to target companies that have been negligent in their security.

The HC3 (Health Sector Cybersecurity Coordination Center), an American government agency, explains that 8base is known to have attacked a medical establishment in the United States in 2023. It would have been active since 2022 and would have even been on the podium, for the duration of a months last year, of the most active groups on the cyber scene, targeting Western companies or institutions most of the time.

It is difficult to know what its real affiliation is (to a country, a region of the globe or other), or if it acts completely independently.

Best antivirus, comparison in April 2024
To discover
Best antivirus, comparison in April 2024

Apr 2, 2024 at 10:35 am

Service comparisons

Sources: Clubic, Valéry Marchive via X.com

Alexandre Boero

Clubic news manager



Clubic news manager

Journalist, responsible for CLUBIC news. Reporter, videographer, host and even singer-imitator, I wrote my first article in 6th grade. I made this vocation my profession (graduated from the EJC...

Read other articles

Journalist, responsible for CLUBIC news. Reporter, videographer, host and even singer-imitator, I wrote my first article in 6th grade. I made this vocation my profession (graduated from EJCAM), to write, interview, film, edit and produce on a daily basis. Friendships with Tech, of course, but also with the world of media, sport and travel. In addition to journalism, video production and animation, I have a YouTube channel (in my name) which should pique your curiosity if you like beautiful walks around the world, new technologies and Koh-Lanta 🙂

Read other articles

  • Malware / Ransomware

  • Computer virus

  • Hacking / Cybercrime

  • Cyber ​​security





Source link -99