These French companies in the sights of Alphv / BlackCat


The Alphv/BlackCat ransomware gang has just pinned the Mazars company to its hunting list. In a new entry on its blog published on May 22, this group of cybercriminals claims to have stolen more than 500 or 700 (depending on the version) gigabytes of internal information from this company, which specializes in auditing, accounting, taxation and advice.

The cybercriminals’ claim has not yet been commented on by the Mazars group. As Le Mag It notes, the display in Portuguese of the names of the files in the data posted online by the cybercriminals suggests that the computer attack could have targeted the Brazilian subsidiary of the audit giant.

Other recent victims in France

Alphv hackers, a ransomware open to affiliates since the end of 2021, had already been talked about last week in France. They had indeed published data stolen from Group DIS, a hosting specialist based in the North.

The company had confirmed this attack in half-words, explaining in a brief message serving as a home page to be confronted with “a difficult situation which has a critical impact on our infrastructures”. This computer hack had cascading consequences for the host’s customers. The actu.fr site, the national portal for the titles of the local press group Publihebdos, had thus had a complicated day on Saturday May 13, as did the Côtes-d’Armor department, whose site had been decanted on May 15.

Production interrupted at Lacroix Electronics

The electronics engineer Lacroix Electronics had finally been another indirect victim of the setbacks of Group DIS. The company then explained that it had intercepted intrusions targeting the IT of its sites in Beaupréau, France, Willich (Germany) and Zriba (Tunisia).

“Certain local infrastructures have however been encrypted and an analysis is also carried out to identify any exfiltrated data”, added the industrialist. The company finally specified aiming for a resumption of production on these three sites this Monday, May 22.

Also known as BlackCat, Alphv ransomware is distinguished by the programming language used, Rust. A job that had allowed cybercriminals, noted Kaspersky, to create a malicious tool capable of targeting both Windows and Linux systems. According to Varonis, the group had also distinguished itself with a significant discount for other cybercriminals, promising its affiliates to keep 90% of the ransoms extorted.




Source link -97