Employee Data of Rio Tinto Group Uploaded to Dark Web

March 23, 2023

Personal data of Rio Tinto Ltd’s former and current Australian employees were stolen by Cl0p. On April 6 the files were uploaded on the dark web. Ransom group Cl0p claims responsibility for the alleged data hack.

Rio Tinto confirmed that stolen employee data have been uploaded on the dark web, ABC News reported.

read more

Medusa Ransom Group Hacks into Gujarat Mining Company Demanding $500K Ransom

March 23, 2023

A ransomware gang breached the Gujarat Mineral Development Corporation (GMDC) data network on April 1. The ransomware gang called ‘Medusa’, first published on its blog, ‘Medusa Blog’ on March 23, privy to hacker networks, that they were in possession of several GBs of sensitive data belonging to GMDC’s office in Ahmedabad and had compromised the ‘admin’ of the network. Medusa ransomware demanded $500,000 as ransom by April 1, from GMDC to decrypt the documents.

The Medusa ransomware gang took control of administrator rights, and allegedly had access to Office365 users’ emails including the attached documents. There were lists of corporate business clients with whom GMDC is in business, maintenance contracts for a power plant, several tender documents, infrastructure evaluation report conducted by Schneider Electric for GMDC, several IP addresses of employees and their devices, employees’ personal details.

read more

Limited Operational Impact after Cyberattack at Copper Mining Company FCX

August 11, 2023

Copper mining company Freeport-McMoRan (FCX) suffered a cyber attack that hit its information technology systems and caused limited impact to its operations. Phoenix, Arizona-based FCX said “the company is assessing the impact and proactive measures are being taken to address the situation. The company is working closely with third-party experts and law enforcement.

“To date, there has been limited impact on production. Transitional solutions are being planned and implemented to secure information systems as quickly as possible.

read more

Software Bug Blamed in Radioactive Spill

January 1, 2002

WIZARD SPIDER is a sophisticated eCrime group that has been operating the Ryuk ransomware since August 2018, targeting large organizations for a high-ransom return. This methodology, known as “big game hunting,” signals a shift in operations for WIZARD SPIDER. This actor is a Russia-based criminal group known for the operation of the TrickBot banking malware that had focused primarily on wire fraud in the past.

read more