Hacking Group Dark Angels Steals $75 Million In Biggest Crypto Ransom Attack Ever
The post Hacking Group Dark Angels Steals $75 Million In Biggest Crypto Ransom Attack Ever appeared on BitcoinEthereumNews.com.
In a startling development that has sent shockwaves through the cybersecurity world, the hacking group known as Dark Angels has executed the largest known ransomware attack to date. The Pennsylvania-based drug distributor Cencora fell victim to this unprecedented cyber assault, resulting in a staggering $75 million ransom payment made in Bitcoin, according to a recent report by Zscaler ThreatLabz. Bloomberg first broke the news on Wednesday, revealing the scale of this digital heist that has set a new and troubling benchmark in the realm of cybercrime. The attack, which occurred in February this year, culminated in Cencora making three separate Bitcoin payments to the attackers in March. Dark Angels, believed to be a Russian-based cybercrime syndicate, has been active since 2021. The group has gained notoriety for targeting a wide range of sectors, including healthcare, finance, government, and education and their modus operandi differs to most ransomware groups. According to Zscaler “the Dark Angels group employs a highly targeted approach, typically attacking a single large company at a time. This is in stark contrast to most ransomware groups, which target victims indiscriminately and outsource most of the attack to affiliate networks,” The Rising Threat of Targeted Ransomware Attacks This novel strategy has proven highly effective, as evidenced by the group’s previous high-profile attacks, including a $51 million demand from international conglomerate Johnson Controls in 2023. Cencora first acknowledged the breach in a July regulatory filing, describing it as a “material cybersecurity incident” discovered in February. The company revealed that the exfiltrated data included personally identifiable information (PII) and protected health information, primarily maintained by a subsidiary providing patient support services. CFO James F. Cleary stated in the filing, “The Company believes it has contained the incident, and the Company has undertaken remediation efforts, which are ongoing.” He also expressed confidence…
Filed under: News - @ September 19, 2024 1:23 am