The Hive ransomware-as-a-service (RaaS) team has claimed responsibility for a cyber attack in opposition to Tata Electrical power that was disclosed by the organization fewer than two weeks back.
The incident is claimed to have transpired on October 3, 2022. The risk actor has also been noticed leaking stolen details exfiltrated prior to encrypting the network as portion of its double extortion plan.
This allegedly comprises signed client contracts, arrangement paperwork, as effectively as other delicate details such as emails, addresses, phone quantities, passport figures, taxpayer knowledge, between many others.
The Mumbai-primarily based organization, which is India’s premier integrated ability business, is section of the Tata Team conglomerate.
Tata Ability had beforehand disclosed in a filing with the Countrywide Stock Trade (NSE) of India that an intrusion on the company’s IT infrastructure impacted “some of its IT techniques.”
According to further more particulars shared by security researcher Rakesh Krishnan, the leak consists of individually identifiable facts (PII), which includes Aadhaar id quantities, long term account numbers (PAN), drivers’ license, income details, and engineering drawings.
The most current progress is also indicative of the reality that Tata Electric power possible refused to pay out a ransom, prompting the cybercrime gang to publish the siphoned information on its HiveLeaks dark web portal.
In accordance to studies printed by Digital Shadows and Intel 471, Hive was the third-most prevalent ransomware loved ones observed in Q3 2022, coming only at the rear of LockBit 3. and Black Basta and surpassing the likes of AvosLocker, BlackByte, BlackCat, and Vice Society.
Discovered this article interesting? Adhere to THN on Fb, Twitter and LinkedIn to study much more exclusive material we publish.
Some parts of this article are sourced from:
thehackernews.com