The LockBit ransomware group has claimed an attack on German manufacturer Continental, which is refusing to confirm whether its data has been stolen.
LockBit claimed the attack on its leak site and is threatening to publish the company’s data by 15:45:36 UTC, according to its deep web blog. At this time, the group hasn’t specified what the data contains or how much it allegedly has, just that it will publish “all available data".
When asked for comment, Continental referred IT Pro to a statement it had published on 24 August 2022 regarding a cyber attack. It declared it had been the victim of an attack which infiltrated parts of its IT systems.
The company claimed to have detected the attack, but then managed to avert it and that its business activities hadn’t been affected. It added that it had full control over its IT systems and that the systems of third-party providers hadn’t been affected either.
The company's August statement made no reference to data, stolen or otherwise. When pressed on whether the company was aware if LockBit was in possession of any of its data, a Continental spokesperson told IT Pro that it is "not commenting on this beyond the statement that has already been published on our website in August".
RELATED RESOURCE
LockBit is one of the leading ransomware organisations currently in operation and operates on a double extortion model which involves stealing data from a victim - which is usually a business or other type of organisation - and threatening to leak it if a ransom isn't paid.
Victims are usually encouraged to pay the ransom demand up front, or in some cases, they are afforded a window in which time they can negotiate the ransom demand down to a lower rate.
LockBit has a history of claiming attacks on large businesses and those claims were ultimately revealed to be untrue. This week, French multinational Thales confirmed to IT Pro that the claims made by LockBit concerning an attack on its systems were unfounded following an internal investigation.
Similarly, it repeated this behaviour with cyber security firm Mandiant earlier this year, claiming to have taken more than 350,000 files from the company and intended to publish them.
However, the company found no evidence that the attack had been carried out, and the countdown reached zero without data being published. LockBit later admitted the incident was a 'PR stunt'.
-
Prolific ransomware operator added to Europe’s Most Wanted list as US dangles $10 million rewardNews The US Department of Justice is offering a reward of up to $10 million for information leading to the arrest of Volodymyr Viktorovych Tymoshchuk, an alleged ransomware criminal.
-
Jaguar Land Rover “did the right thing” shutting down systems to thwart cyber attackNews The attack on Jaguar Land Rover highlights the growing attractiveness of the automotive sector
-
Ransomware attack on IT supplier disrupts hundreds of Swedish municipalitiesNews The attack on IT systems supplier Miljödata has impacted public sector services across the country
-
A notorious hacker group is ramping up cloud-based ransomware attacksNews The Storm-0501 threat group is refining its tactics, according to Microsoft, shifting away from traditional endpoint-based attacks and toward cloud-based ransomware.
-
Security researchers have just identified what could be the first ‘AI-powered’ ransomware strain – and it uses OpenAI’s gpt-oss-20b modelNews Using OpenAI's gpt-oss:20b model, ‘PromptLock’ generates malicious Lua scripts via the Ollama API.
-
Data I/O shuts down systems in wake of ransomware attack
News Regulatory filings by Data I/O suggest the costs of dealing with the attack could be significant
-
Average ransom payment doubles in a single quarterNews Targeted social engineering and data exfiltration have become the biggest tactics as three major ransomware groups dominate
-
BlackSuit ransomware gang taken down in latest law enforcement sting – but members have already formed a new groupNews The notorious gang has seen its servers taken down and bitcoin seized, but may have morphed into a new group called Chaos
