The Hive ransomware-as-a-service (RaaS) team has claimed duty for a cyber attack versus Tata Energy that was disclosed by the organization less than two months ago.
The incident is said to have happened on Oct 3, 2022. The danger actor has also been observed leaking stolen info exfiltrated prior to encrypting the network as element of its double extortion plan.
This allegedly comprises signed client contracts, agreement files, as effectively as other sensitive details this kind of as e-mails, addresses, phone figures, passport figures, taxpayer facts, between many others.
The Mumbai-dependent agency, which is India’s greatest built-in energy company, is portion of the Tata Group conglomerate.
Tata Electrical power had earlier disclosed in a filing with the National Inventory Exchange (NSE) of India that an intrusion on the company’s IT infrastructure impacted “some of its IT programs.”
According to even further details shared by security researcher Rakesh Krishnan, the leak consists of individually identifiable information (PII), which include Aadhaar id quantities, long-lasting account quantities (PAN), drivers’ license, salary details, and engineering drawings.
The hottest growth is also indicative of the point that Tata Power probable refused to spend a ransom, prompting the cybercrime gang to publish the siphoned data on its HiveLeaks dark web portal.
In accordance to figures released by Digital Shadows and Intel 471, Hive was the 3rd-most prevalent ransomware family members noticed in Q3 2022, coming only driving LockBit 3. and Black Basta and surpassing the likes of AvosLocker, BlackByte, BlackCat, and Vice Society.
Located this post fascinating? Stick to THN on Fb, Twitter and LinkedIn to examine a lot more special written content we article.
Some areas of this report are sourced from: