The ALPHV/Blackcat ransomware gang has claimed duty for the latest community breaches of Fortune 500 firm Prudential Monetary and mortgage lender loanDepot.
The 2 firms have been added to ALPHV’s darkish internet leak website immediately, with the risk actors nonetheless having to publish proof of their claims. ALPHV plans to promote the stolen information from loanDepot’s community and launch Prudential’s information totally free after failed negotiations.
loanDepot revealed on January 22 that at the least 16.6 million individuals had their private info stolen within the ransomware assault they confirmed on January 8, two days after disclosing it as a “cyber incident” on January 6.
The corporate stated it might notify these impacted by the data breach and supply them with free credit score monitoring and identification safety companies.
loanDepot is likely one of the largest U.S. nonbank retail mortgage lenders, with roughly 6,000 staff and over $140 billion in serviced loans.
On Tuesday, Prudential Monetary additionally revealed {that a} suspected cybercrime group breached its community on February 4 and stole worker and contractor information.
Prudential stated an ongoing investigation assesses the incident’s full scope and impression however has but to seek out proof that the attackers additionally exfiltrated buyer or shopper information.
This main international monetary companies Fortune 500 firm is the second-largest life insurance coverage firm within the U.S., with reported revenues of greater than $50 billion in 2023, and it employs 40,000 individuals worldwide.
On Thursday, the U.S. State Division introduced rewards of as much as $10 million for suggestions that would result in the identification or location of ALPHV gang leaders.
A further $5 million reward is obtainable for info on people linked to or trying to take part in ALPHV ransomware assaults.
The FBI linked this gang to over 60 breaches worldwide throughout its first 4 months of exercise between November 2021 and March 2022. The regulation enforcement company additionally estimates that ALPHV raked in at the least $300 million in ransom funds from over 1,000 victims till September 2023.
ALPHV surfaced in November 2021 and is believed to be a rebrand of the DarkSide and BlackMatter ransomware operations.
The group gained worldwide notoriety after the Colonial Pipeline assault, which led to intensive investigations by regulation enforcement businesses worldwide and the operation going by means of two rebrands.
The FBI disrupted the gang’s operation in December and briefly took down its Tor negotiation and leak websites after breaching its servers months earlier and making a decryption instrument.
ALPHV has since “unseized” their information leak website with the assistance of personal keys they nonetheless owned and has now launched a brand new Tor leak website the FBI has but to take down.