The LockBit hacking group has claimed accountability for the August cyber-attack towards the multinational automotive group Continental.
The ransomware gang made the announcement on its leak web site on Wednesday and is threatening to publish the corporate’s information until the ransom is paid over the subsequent few hours of at the moment (Friday).
On the darkish net weblog publish, the group has but to make any particulars out there concerning what information it exfiltrated from Continental’s community or when the breach itself occurred.
“Over the past yr, now we have seen a dramatic rise within the variety of assaults brought on by the LockBit ransomware group, with Continental the most recent sufferer to have their information threatened to be revealed,” mentioned Raj Samani, SVP chief scientist at Rapid7.
“Our analysis exhibits that LockBit’s market share in ransomware assaults per group has elevated from 1% in 2020 to 4% in 2021. It will solely develop if they’re allowed to proceed stealing delicate information and promoting it for revenue,” Samani instructed Infosecurity.
Based on the manager, organizations want a number of layers of protection towards ransomware assaults in an effort to shield themselves.
“This consists of not simply applied sciences to detect a possible intrusion or lateral motion but in addition implementing safety controls ought to the menace stay undetected, corresponding to using file encryption,” Samani added.
Whereas Continental did reply to a remark request from Infosecurity, it didn’t present extra info past the August launch. Nevertheless, when the assault was initially found in August, Continental claimed to have detected the assault and averted it.
“Continental’s enterprise actions haven’t been affected at any level. The expertise firm maintains full management over its IT techniques. Based on present info, the IT techniques of third events haven’t been affected,” the corporate wrote on the time.
Quick ahead to the current day, the alleged deadline by LockBit is quick approaching, and the ransomware group’s claims will doubtless quickly be publicly confirmed or dismissed.
The Continental row comes days after an advisory by Microsoft linked the menace actors behind the Raspberry Robin worm with a fancy and interconnected malware ecosystem comprising the Clop and LockBit ransomware teams.