1 in 7 ransomware extortion attacks leak OT data: Report

IANSUpdated: Wednesday, February 02, 2022, 07:44 AM IST
article-image

San Francisco: After collecting and analysing data posted on the dark web after being stolen during ransomware extortion attacks, experts have found that roughly 1 in 7 leaks from industrial organisations are likely to expose sensitive operational technology (OT) documentation, a report said on Tuesday.

In 2021, Mandiant Threat Intelligence continued observing ransomware operators attempting to extort thousands of victims by disclosing terabytes of stolen information on shaming sites.

“This trend, which we refer to as ‘multifaceted extortion,’ impacted over 1,300 organisations from critical infrastructure and industrial production sectors in just one year,” Mandiant said in a statement.

To validate the extent to which multifaceted extortion leaks represent a risk to OT, Mandiant analysed a semi-random selection of samples from industries that typically leverage OT systems for production.

Using various technical and human resources, it downloaded and parsed through many terabytes of dump data and found a substantial amount of sensitive OT documentation. This included network and engineering diagrams, images of operator panels, information on third-party services, and more.

“Based on our analysis, one out of every seven leaks from industrial organisations posted in ransomware extortion sites is likely to expose sensitive OT documentation,” the experts said.

Access to this type of data can enable threat actors to learn about an industrial environment, identify paths of least resistance, and engineer cyber-physical attacks.

On top of this, other data also included in the leaks about employees, processes, projects, etc. can provide an actor with a very accurate picture of the target’s culture, plans, and operations.

(To receive our E-paper on whatsapp daily, please click here. To receive it on Telegram, please click here. We permit sharing of the paper's PDF on WhatsApp and other social media platforms.)

RECENT STORIES

Mumbai: Bombay HC adjourns ED’s plea by 2 weeks in connection with probe against businessman...

Mumbai: Bombay HC adjourns ED’s plea by 2 weeks in connection with probe against businessman...

Mumbai updates: IMD issues heavy rain alert for Maharashtra from July 6 to 8

Mumbai updates: IMD issues heavy rain alert for Maharashtra from July 6 to 8

Traders to protest against a 5% GST on unregistered brands on July 8

Traders to protest against a 5% GST on unregistered brands on July 8

Two drown at abandoned quarry in Dahisar, bodies recovered

Two drown at abandoned quarry in Dahisar, bodies recovered

Punjab Cabinet nod to 600 units of free power to every household per billing cycle

Punjab Cabinet nod to 600 units of free power to every household per billing cycle