Tuesday, October 27, 22:08
Home security Maze Ransomware to post stolen data

Maze Ransomware to post stolen data

The hackers behind the Maze Ransomware are accused by a known company of illegal access to its network, data theft, computer encryption and publication of stolen data as ransom was not provided.

southwire-sues-maze-hackers-for-data-exposure

The prosecution company is Southwire, a leading cable manufacturer from Carrollton, Georgia, who was the victim of hackers in December 2019. As part of this attack, ransomware allegedly stole 120GB of data and encrypted 878 devices.

The ransom of 850 bitcoins, or $ 6 million, was not paid by Southwire, so Maze hackers posted some of the stolen data on a "news" site they created.

This site is hosted by an internet service provider in Ireland, according to which Southwire says it has been contacted repeatedly but has not received a response.

Southwire sues Maze creators

On December 31, 2019, Southwire filed a lawsuit in the Northern District of Georgia, USA. v. Maze and sought injunctions against the provider in Ireland for hosting the Maze news site and the stolen files.

In a full-blown civil lawsuit, Southwire seeks safeguards and compensation against Maze hackers for encrypting their network and publishing stolen data recovered during the ransomware attack.

“This is a lawsuit for damages and interim measures against the defendant stemming from the Electronic Fraud and Abuse Act and the common law breach of mobile communications, confidential business information and other sensitive information. The defendant then demanded several million dollars to keep the information private, but after Southwire declined to repay it, the defendant posted some of Southwire's confidential information on a public website that he controls. "

While it may seem odd that a lawsuit was filed against the Maze hackers, several lawyers said the move was intended to consolidate the company's legal position in order to receive compensation in case the money was recovered by the government. This action can also be a subversive factor for any US based hosting provider or organization that publishes data stolen from Maze.

“The United States Penal Code states that any person who has suffered injury or loss due to a breach may take legal action against the offender to obtain compensation.

The accused violated the Electronic Fraud and Abuse Act by knowingly and intentionally accessing Southwire's protected computers without permission or beyond any warranty. ”

Two exhibits are included in the lawsuit. The letter that demands ransom and an image that probably depicts Maze's stolen data.

Southwire is seeking interim relief in Ireland

A Southwire consultant has sought injunctions in Irish courts against the company hosting the Maze news site and the stolen records.

According to sources, Southwire has made repeated requests to the web hosting company called World Hosting Farm Limited, which hosts the Maze news site, to remove their stolen data but has never received a response.

Because of this, the company has applied for safeguards for the parties involved.

“The measures require defendants to remove all data related to Southwire and its customers from the website. It also obliges the defendants to hand over all data stolen from Southwire and to guarantee that nothing relevant will be published online or anywhere else. "

The interim injunctions were partially accepted, but the court did not prevent the media from mentioning the victim's name in their petition.

It is not known whether the Maze team will try to host their news with another hosting provider or move them to Tor where it will be much more difficult to delete.

Legal action is a risky move by Southwire, as it could lead Maze hackers to release all the stolen data and not just some files.

"This is a bold but dangerous move by Southwire, which could push the Maze team to release all of the company's data, while deleting the site could lead to a constant hunt in which the data is published. in other, possibly more well-known locations, ”said Emsisoft analyst Brett Callow.

With Maze hackers looking too eager to publish their actions and stolen data, this is a move that could lead to more data being published.

LEAVE ANSWER

Please enter your comment!
Please enter your name here

SecNews
SecNewshttps://www.secnews.gr
In a world without fences and walls, who needs Gates and Windows

LIVE NEWS

00:01:47

Data breach in a law firm exposes data of Google employees

Immigration law firm Fragomen, Del Rey, Bernsen & Loewy, LLP revealed that it suffered a data breach that led to the leakage of personal data ...

How to install a .watchface file on Apple Watch

The Apple Watch lets you customize the faces of the watch to display all kinds of useful information. But did you know ...

The five biggest data breaches of the 21st century

Data is becoming more and more sought after as our daily lives become more digitized. The technology giants that monopolize data are ...

Microsoft is limiting the availability of Windows 10 20H2

Microsoft is currently restricting the availability of Windows 10 20H2 to provide all users who want to ...

How to enable the new Chrome Read more feature

The latest version of Google Chrome browser, v86, released earlier this month, contains a secret feature called Read ...

How to choose a custom color for the Start menu

Starting with the October 2020 update, Windows 10 is the default on a theme that removes bright colors from ...

NASA telescope discovers drinking water on the moon

Eleven years ago, a spacecraft changed our view of the moon forever. The data collected by ...

Microsoft: Enhances password spray attack detection capabilities

Microsoft has significantly improved the ability to detect password spray attacks in the Azure Active Directory (Azure AD) and has reached the point ...

How to prevent companies from finding our phone number

In the age of advertising, the more user information is known the more convenient it is for companies. And in particular, the ...

Violation in a psychotherapy clinic led to blackmail of patients

Two years ago, a cyber attack took place in a Finnish psychotherapy clinic, which resulted in data theft and ransom demand. Now,...