New Windows ransomware DarkSide used to hit Canadian real estate firm

[Destry Winant <destry () riskbasedsecurity com>]

https://www.itwire.com/security/new-windows-ransomware-darkside-used-to-hit-big-asset-management-firm.html

Malicious attackers claim to have stolen more than 200GB of data from
Brookfield Asset Management, a 121-year-old firm which is
headquartered in Toronto, with corporate offices in New York City,
London, Rio de Janeiro and Sydney.

However, iTWire understands that the attack was on Brookfield
Residential, an investee site of the company.

Brookfield residential, which is based in Calgary, has assets of C$5.7
billion as per its second quarter report.

The ransomware used to effect the theft is a relatively new one known
as DarkSide and, as usual, only attacks Windows systems.

Some data, allegedly stolen from the company, has been posted on the
group's website on the dark web.

iTWire understands that Brookfield Residential has alerted the
appropriate authorities, restored affected systems taken additional
steps to boost security.

The attackers claim to have stolen Brookfield data relating to
corporate HR, finance, payroll, administration, business plans and
commercial matters.

They claim the data is pre-loaded and ready to be published if
Brookfield does not pay the ransom that has been demanded. Exactly how
much is being sought has not been specified.

The criminals have also said that after publication, the data will be
available on the dark web for at least six months.
_______________________________________________
BreachExchange mailing list sponsored by Risk Based Security
BreachExchange () lists riskbasedsecurity com

If you wish to Edit your membership or Unsubscribe you can do so at the following link:
https://lists.riskbasedsecurity.com/listinfo/breachexchange