Cybersecurity Company Dragos Investigates ALPHV Ransomware Attack

Dragos, a company specializing in the cybersecurity of industrial sites, found itself among the victims listed on the data leak site of the group ALPHV, also known as BlackCat. This occurred following a security breach through a third party. Dragos has announced that it is investigating this incident.

ALPHV, notorious for attacks on various organizations, added information about Dragos to their blog on the dark web. A post published on Saturday does not disclose the specific data that may have been accessible to the perpetrators but mentions a potential leak of personal data of the company’s executives.

However, ALPHV claims that they obtained the data through a breach in a third-party system, which likely means that Dragos’ systems were not directly attacked.

In its statement, Dragos confirmed its awareness of “false claims” regarding the leak of its executives’ data. The company has initiated an investigation with the help of its experts and external security providers. Dragos asserts that it has found no evidence of compromise to its systems and will continue to monitor the situation.

The group ALPHV/BlackCat, first identified in 2021, operates under the Ransomware-as-a-Service (RaaS) model, offering subscriptions to malicious software to cyber criminals. According to Microsoft, active members of this group have previously collaborated with other well-known ransomware families.

The FBI notes close connections between ALPHV/BlackCat’s money launderers and other cybercriminal organizations, indicating a robust network of contacts within a business founded on the Ransomware-as-a-Service (RaaS) model.
ALPHV gained global attention following large-scale cyberattacks on renowned companies such as MGM Resorts International and Caesars Entertainment. Tracking the group’s activity reveals that ALPHV is among the most active cybercriminal groups, having targeted 317 organizations worldwide in the past year.

Via: securityweek