Coca-Cola Co. is investigating a doable data breach after the Stormous ransomware gang claimed to have hacked the corporate and stolen data.
Stormous claimed on its darkish net web page right now that it had hacked a few of Coca-Cola’s servers and had downloaded 161 gigabytes of data with out the corporate’s information. The group is providing to promote the stolen data for 1.6467 bitcoin, at the moment value $63,000.
While the intent of Stormous seems to be monetary, the group is unusual, to say the least. The determination to hack Coca-Cola was made after the gang ran a ballot on its Telegram channel asking members to vote on whom they need to goal, with Coca-Cola receiving 72% of the vote.
The Stormous ransomware gang first emerged earlier this yr within the lead-up to the Russian invasion of Ukraine. Following the invasion, the group stated it supported Russia and would goal Western corporations.
Usually, it will be presumed that Stormous was Russian or linked to the Russian authorities, however safety researchers will not be certain. In a few of their earlier assaults, the ransom be aware left by the group was written in Arabic, which Digital Recovery claims might point out their nation of origin. Stormous has claimed to have hacked targets within the U.S. and Europe, together with Serta Inc. and Epic Games Inc.
#Stormous claims accountability for Coca-Cola’s ransomware assault. They are allegedly promoting 161 GB of data allegedly belonging to Coca-Cola…#Ransomware #RansomwareGroup pic.twitter.com/xCSHwdVQpR
— BetterCyber (@_bettercyber_) April 25, 2022
“The alleged data breach of Coca-Cola’s data by Stormous demonstrates that even potential breaches can impact an organization’s brand reputation and necessitate formal media responses by the company,” Neil Jones, director of cybersecurity evangelism at cloud safety firm Egnyte Inc., instructed SiliconANGLE. “Although particulars of the incident are nonetheless rising, an efficient incident response plan must account for potential assaults that originate from financially motivated cyber-attackers, disgruntled insiders and even opponents who’re attempting to realize an edge in a essential market.
Amit Shaked, chief govt officer of public cloud data safety firm Laminar Ltd., famous that the incident indicators that data is not a commodity however a foreign money.
Shaked defined that data inside a corporation’s community is efficacious to companies and attackers. “With a majority of the world’s data residing in the cloud, it is imperative that security becomes data-centric and solutions become cloud-native,” Shaked added. “Solutions need to be completely integrated with the cloud in order to identify potential risks and have a deeper understanding of where the data resides.”
Show your assist for our mission by becoming a member of our Cube Club and Cube Event Community of consultants. Join the group that features Amazon Web Services and Amazon.com CEO Andy Jassy, Dell Technologies founder and CEO Michael Dell, Intel CEO Pat Gelsinger and lots of extra luminaries and consultants.