BlackCat threatened Reddit to release 80GB of its data
The ransomware group known as BlackCat, or ALPHV, has threatened to release 80GB of Reddit data after taking credit for the February attack.
On February 9, Reddit revealed that one of its employees was the victim of a phishing attempt that breached its systems on February 5.
Threat actors gained access to Reddit's servers through a phishing attempt, managing to take internal papers, source code, employee data, and some limited information on the site's advertisers.
According to Christopher Slough, Chief Technology Officer of Reddit
The attacker was able to view some internal sheets and codes, as well as internal dashboards and business systems, after successfully obtaining employee login information.
However, Reddit has stated that none of its platforms have been affected and that neither user accounts nor payment card information are at risk.
Reddit noted that the phishing attack was similar to the one suffered by video game developer Riot Games earlier this year though it did not provide many details about the attack.
All of the League of Legends and Teamfight Tactics source code, as well as the code for the previous Packman anti-cheat software, have been stolen by hackers after they exploited this technology to gain access to the Riot Games development environment.
The threat actors sought $10 million from Reddit during the hack in exchange for not disclosing the stolen material. Despite this, the attackers attempted to sell the material for $1 million on the hacking site after being refused the ransom.
Threat actors linked to the Reddit attack confirmed they wanted to contact the site, on April 13 and June 16, asking for $4.5 million to remove the material, but received no answer.
A similar attack on Western Digital in March 2023 that resulted in a massive disruption of their cloud service, My Cloud, is believed to have been carried out by the same hacker organization.
Comments
Post a Comment