Elon Musk has confirmed that Tesla thwarted a "serious" cyber attack at its Gigafactory in Nevada after a Russian national allegedly attempted to bribe an employee to install ransomware on the company’s network.
The US Justice Department released a complaint earlier this week about an attempted malware attack against an unnamed company in Sparks, Nevada. While the complaint didn't name Tesla specifically, Musk confirmed via Twitter that his company was the target, adding that this was a "serious attack".
As per the complaint, the FBI charged a Russian national, 27-year-old Egor Igorevich Kriuchkov, in an alleged conspiracy that involved bribing a Tesla employee “to introduce malicious software into the company’s computer network, extract data from the network, and extort ransom money from the company.”
The unnamed employee met with Kriuchkov, who allegedly offered to pay him $1 million to introduce malware into the company's network. The employee informed Tesla, which then notified the FBI.
The malware was designed to install ransomware, a kind of malware that encrypts a victim’s files in exchange for a ransom. Prosecutors said the ransomware used an increasingly popular new tactic that not only encrypt a victim’s files but also exfiltrates the data to the attacker's servers.
"After the malware was introduced, Kriuchkov and his co-conspirators would extract data from the network and then threaten to make the information public, unless the company paid their ransom demand," the complaint reads.
The FBI launched a sting operation, with the employee wearing a wire and sharing text communications with Kriuchkov as they were negotiating the terms of the malware attack. The continued interaction reportedly helped the FBI to obtain information about previous attacks from this group.
Kriuchkov was leaving the US from Los Angeles on 22 August when he was arrested by the FBI.
In recent months, a number of big name companies have fallen victim to ransomware attacks. Canon was hit by a suspected Maze ransomware attack that rendered various services offline and compromised 10TB of data, while Garmin was attacked by WastedLocker, a ransomware strain deployed by EvilCorp.
-
Google CEO Sundar Pichai says vibe coding has made software development ‘exciting again’News Google CEO Sundar Pichai claims software development has become “exciting again” since the rise of vibe coding, but some devs are still on the fence about using AI to code.
-
15-year-old revealed as key player in Scattered LAPSUS$ HuntersNews 'Rey' says he's trying to leave Scattered LAPSUS$ Hunters and is prepared to cooperate with law enforcement
-
15-year-old revealed as key player in Scattered LAPSUS$ Hunters
News 'Rey' says he's trying to leave Scattered LAPSUS$ Hunters and is prepared to cooperate with law enforcement
-
The Scattered Lapsus$ Hunters group is targeting Zendesk customers – here’s what you need to knowNews The group appears to be infecting support and help-desk personnel with remote access trojans and other forms of malware
-
Impact of Asahi cyber attack laid bare as company confirms 1.5 million customers exposedNews No ransom has been paid, said president and group CEO Atsushi Katsuki, and the company is restoring its systems
-
The US, UK, and Australia just imposed sanctions on a Russian cyber crime group – 'we are exposing their dark networks and going after those responsible'News Media Land offers 'bulletproof' hosting services used for ransomware and DDoS attacks around the world
-
A notorious ransomware group is spreading fake Microsoft Teams ads to snare victimsNews The Rhysida ransomware group is leveraging Trusted Signing from Microsoft to lend plausibility to its activities
-
Volkswagen confirms security ‘incident’ amid ransomware breach claimsNews Volkswagen has confirmed a security "incident" has occurred, but insists no IT systems have been compromised.
-
The number of ransomware groups rockets as new, smaller players emergeNews The good news is that the number of victims remains steady
-
Teens arrested over nursery chain Kido hacknews The ransom attack caused widespread shock when the hackers published children's personal data
