News and Updates on Information Technology

Australia – Chem Pack

Exploit: Ransomware
Chem Pack: Liquid Chemical Formulation Manufacturer 

Risk to Small Business: 1.779 = Severe

As a barrage of cyberattacks continues to affect companies in Australia, Chem Pack has been caught in a ransomware attack. Cybercriminals using REvil ransomware have compromised and encrypted data at the Melbourne-based manufacturer. REvil ransomware exploits a known 2018 Windows vulnerability to elevate account privileges, enabling these bad actors to strike. The attackers claim to have exfiltrated financial information, personal information, and other essential business data, and recently posted a screenshot of a sample of the data on a Dark Web forum. Typically, this group posts a screenshot as proof that they’ve encrypted the affected data and asks the victim to contact them to negotiate a ransom for the key to unlock it. 

Individual Risk: No individual data was reported as compromised.

Customers Impacted: Unknown

How it Could Affect Your Customers’ Business: Ransomware is a scourge that doesn’t just hold a company’s operations hostage, it also creates extended cybersecurity risks as data that has been obtained in attacks is copied and shared on the Dark Web. Even when a ransom is paid, victims have no guarantee that the captured data is returned without being replicated or sold to others first.  

Source:
https://www.itwire.com/security/gang-uses-revil-to-attack-melbourne-contract-formulation-firm-chem-pack.html