Clop extortionists have claimed responsibility for the hack of the MFT platform and have begun leaking information on their darknet. The hackers had introduced themselves as a leading organization offering post-factual services for penetration testing, and assured companies that if they used Moveit Transfer software, their data would be in the hands of hackers. Several companies have been affected, and the hackers are asking them to contact them via email, or their data will be automatically released.
Once contacted, the hackers will provide 10% of stolen data as evidence of compromise. The extortionists will also provide a three-day period for companies to discuss the size of the money ransom. The name of affected companies has not been revealed to avoid damage to their reputation. Clop assures that they will remove all stolen data upon payment of ransom and will even provide video clearance of the removal process.
The hackers have previously targeted other MFT services such as Accallion FTA and Fortra Goanywhere. While the hackers claim that they automatically delete the data of government organizations, city services, police, etc, there is no guarantee that these organizations’ data is completely safe.
It remains to be seen what percentage of the affected companies will agree to pay the ransom as a trade-off for data security and brand reputation.