The ransomware gang known asALPHVhas claimed a successful attack onAmazon - ownedhome security troupe Ring . A cybercriminal group lie with for itsdespicable tactics , the gang is now jeopardize to publish the company ’s tender data if its fiscal demands are not met .
On Monday , the malware research organization VX - undergroundtweetedscreenshots of the ransomware gang ’s claims , which had been put out to its darknet website . Like other groups of its kind , ALPHV has a consecrate “ leak land site , ” where its members selectivelyrelease datastolen during attack . The doxxed info is used to spurring victims into paying a sizeable ransom . On its page for Ring , ALPHV recently forget a unsubdivided but baleful message : “ There ’s always the option to rent us leak your data … ” but posted no further entropy .
Used by 100 of thousands of masses across the U.S. to monitor their domicile and businesses , Ringwould seem an obvious target for cybercriminals purely due to the wealth of information the companycollects on its users . For ransomware gangs , the more data , the tastier the target . So far , however , Ring seems to be claiming that the hacker are full of it .
Photo: Joni Hanebutt (Shutterstock)
“ We currently have no indication that Ring has receive a ransomware event , ” said Emma Daniels , a voice for the company , when reach out for comment by Gizmodo . However , Daniels revealed that Ring was “ mindful of a third - party vendor that has have an result and we are working with them to see more . This marketer does not have approach to customer accounts . ” Daniels did not identify which third - party had been impacted .
Brett Callow , a ransomware researcher for software package certificate firm Emsisoft , secern Gizmodo that there was limited data about the recent incident . “ No data has been release yet . Like other ransomware surgical process , ALPHV sometimes start by plainly naming victims . If that does n’t ensue in payment , they then start releasing the steal data , ” said Callow .
“ It ’s not uncommon for ransomware groups to overstate the extent of the data they obtained , but I do n’t hark back ALPH having made any completely pretended title in the past tense , ” Callow said .
Ring claims no customer data has been affected
It ’s also not rare for companies to ab initio deny that customer data has been impacted by a breach when , in fact , it has . Just look at the recent fiasco involving the beleaguered password managing director LastPass , which washackedlast summer , initially claimed that there was “ no evidence”customer data had been compromise , and has been slowlywalking backthat title ever since . That said , there ’s small indicant that ’s what ’s get on with Ring . In fact , it ’s not solely clear what is bump , since so footling information is presently uncommitted .
Ring has draw controversy in the past tense due to its own seclusion and security exercise , namely its use of third - parties to gather up and share information about users . Several years ago , the privacy - focused Electronic Frontier Foundationpublisheda critique of the troupe ’s data practice session , lambasting Ring ’s app for its use of third - parties to collect and deal excessive information about camera exploiter with advertisers . “ ringing claim to prioritize the security and privateness of its customers , yet time and again we ’ve seen these claims not only fall light , but harm the customers and community members who engage with Ring ’s surveillance system of rules , ” EFFwrote .
As with most ransomware attack , we ’ll have to wait a little bit to see just how bad the wrong really is .
Computer securityInternet privacySecurity
Daily Newsletter
Get the best tech , science , and culture news show in your inbox day by day .
word from the future tense , deliver to your nowadays .
You May Also Like
