The ALPHV ransomware gang, also known as BlackCat has created a dedicated website that allows the customers and employees of their victims to check if their data was stolen in an attack.
Ransomware gang performs the attack in which they steal data of companies, employees, etc.
After which, the threat actors code the devices.
Later, the threat actors demand for a ransom payment for using the data in a double extortion scheme to deliver a decryptor and stop the public release of corporate data.
The hacking group have developed a website where they release the data in a portion of stolen data after warning them that their information is been stolen.
To keep pressure on their victims, they took this step but it hardly has any burden on corporate companies, employees and their victims.
Taking extortion to the next level
Today, the AlphV/BlackCat ransomware operation began releasing allegedly stolen data that they claim was stolen from a hotel and spa in Oregon.
‘Alphv (Ransomware) is no doubt hoping that this tactic will increase the probability of them monetizing attacks.
If companies know that information relating to their customers and employees will be made public in this manner, they may be more inclined to pay the demand to prevent it from happening – and to avoid potentially being hit with class-action lawsuits, Callow mentioned.
He added, ‘While it’s an innovative approach, it remains to be seen whether the strategy will be successful – and, of course, that will determine whether it becomes more commonplace.
Detecting threats like BlackCat, while good, is no longer enough as human-operated ransomware continues to grow, evolve, and adapt to the networks they’re deployed or the attackers they work for,” the researchers said