happier IT Inc.

View Original

Nokia Subsidiary has 250 GB OF Data Stolen As Systems Encrypted By Ransomware

Exploit: Ransomware
Company: SAC Wireless
Industry: Technology, Telecommunications
Sources: https://www.bleepingcomputer.com/news/security/nokia-subsidiary-discloses-data-breach-after-conti-ransomware-attack/

A US-based Nokia subsidiary, SAC Wireless, announced a data breach after their networks had been penetrated by the Conti ransomware gang. Conti was able to steal data and deploy their ransomware, encrypting SAC’s systems before being detected.

The Conti ransomware gang is claiming to have stolen over 250 GB of data mentioned on their leak site and is threatening to leak the stolen files online if SAC does not pay the demanded ransom. Meanwhile, company officials revealed the stolen data contained personal information from current and former employees including their health plans’ dependents and beneficiaries. A completed forensic investigation further showed even more concerning stolen data including personal contact information, government ID numbers, social security numbers, citizenship status, medical history, digital signatures and more.

While remediation and any further investigations take place, SAC has responded to the ransomware attack by initiating multiple measures in hopes of taking a preventative stance against future breaches, including:

  • Changed firewall rules

  • Disconnected VPN connections

  • Activated conditional access geo-location policies to limit non-U.S. access

  • Provided additional employee training

  • Deployed additional network and endpoint monitoring tools

  • Expanded multi-factor authentication

  • Deployed additional threat-hunting and endpoint detection and response tools

Find out how we can help you defend your business against modern cyber threats.

More than ever, organizations of all sizes have been facing a historical rise in cyber attacks and data breaches. Talk to a cyber security expert today and find out how we can provide expert consulting and a portfolio of Cyber Security solutions designed to protect your organization against today’s most prevalent threats.