{"id":76710,"date":"2023-04-03T03:03:30","date_gmt":"2023-04-03T07:03:30","guid":{"rendered":"http:\/\/blog.cybercon1.com\/?p=76628"},"modified":"2023-06-04T16:04:56","modified_gmt":"2023-06-04T20:04:56","slug":"new-victims-come-forward-after-mass-ransomware-attack","status":"publish","type":"post","link":"https:\/\/blog.cyberconservices.com\/index.php\/2023\/04\/03\/new-victims-come-forward-after-mass-ransomware-attack\/","title":{"rendered":"New victims come forward after mass-ransomware attack"},"content":{"rendered":"

The number of victims<\/span> affected by a mass-ransomware<\/strong> attack, caused by a bug in a popular data transfer tool used by businesses around the world, continues to grow as another organization tells TechCrunch that it was also hacked.<\/span><\/p>\n

\n
\n
\n
\n
\n
\n
\n

The City of Toronto told TechCrunch in a revised statement on March 23: \u201cToday, the City of Toronto has confirmed that unauthorized access to City data did occur through a third party vendor. The access is limited to files that were unable to be processed through the third party secure file transfer system.\u201d<\/p>\n

\u201cThe City is actively investigating the details of the identified files,\u201d said city spokesperson Alex Burke.<\/p>\n

TechCrunch initially contacted the city on March 20 for comment after identifying it as an organization that used the GoAnywhere file transfer software at the time of the ransomware attack. The city said its review found \u201cno exfiltration of internal data, nor residents\u2019 data.\u201d<\/p>\n

TechCrunch has learned of dozens of organizations that used the affected GoAnywhere file transfer software at the time of the breach, suggesting more victims are likely to come forward.<\/p>\n

Over the past few days, the Russia-linked Clop gang has added dozens of other organizations to its dark web leak site, which it uses to extort companies further by threatening to publish the stolen files unless a financial ransom demand is paid.<\/p>\n

Canadian financing giant Investissement Qu\u00e9bec confirmed to TechCrunch that \u201csome employee personal information\u201d was recently stolen by a ransomware group that claimed to have breached dozens of other companies<\/a>. Spokesperson Isabelle Fontaine said the incident occurred at Fortra, previously known as HelpSystems, which develops the vulnerable GoAnywhere file transfer tool.<\/p>\n

Hitachi Energy also confirmed<\/a> this week that some of its employee data had been stolen in a similar incident involving its GoAnywhere system, but saying the incident happened at Fortra.<\/p>\n

However, while the number of victims of the mass-hack is widening, the known impact is murky at best.  Read On:<\/a><\/p>\n<\/div>\n<\/div>\n<\/div>\n<\/article>\n<\/div>\n<\/div>\n<\/div>\n

 <\/p>\n","protected":false},"excerpt":{"rendered":"

The number of victims affected by a mass-ransomware attack, caused by a bug in a popular data transfer tool used by businesses around the world, continues to grow as another organization tells TechCrunch that it was also hacked. The City of …<\/span> Continue reading →<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":76756,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_exactmetrics_skip_tracking":false,"_exactmetrics_sitenote_active":false,"_exactmetrics_sitenote_note":"","_exactmetrics_sitenote_category":0,"advanced_seo_description":"","jetpack_seo_html_title":"","jetpack_seo_noindex":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[636],"tags":[637],"class_list":["post-76710","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-ransomware","tag-ransomware"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"https:\/\/blog.cyberconservices.com\/wp-content\/uploads\/2023\/04\/buildings-2297210_1920-2.jpg","jetpack-related-posts":[],"jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/blog.cyberconservices.com\/index.php\/wp-json\/wp\/v2\/posts\/76710","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blog.cyberconservices.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.cyberconservices.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.cyberconservices.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.cyberconservices.com\/index.php\/wp-json\/wp\/v2\/comments?post=76710"}],"version-history":[{"count":0,"href":"https:\/\/blog.cyberconservices.com\/index.php\/wp-json\/wp\/v2\/posts\/76710\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/blog.cyberconservices.com\/index.php\/wp-json\/wp\/v2\/media\/76756"}],"wp:attachment":[{"href":"https:\/\/blog.cyberconservices.com\/index.php\/wp-json\/wp\/v2\/media?parent=76710"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.cyberconservices.com\/index.php\/wp-json\/wp\/v2\/categories?post=76710"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.cyberconservices.com\/index.php\/wp-json\/wp\/v2\/tags?post=76710"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}