The ransomware group, Maze, strikes again, this time, the victim is an independent advisory firm based in the United States, specializing in the consumer and retail sectors, have large clients, including the entrepreneur and former Spice Girl, Victoria Beckham.
The official blog on Maze’s dark web placed Threadstone Advisors, LLC as one of its victims after a recent attack in the last 24 hours.
Threadstone Advisors, LLC worked with Victoria Beckham to establish an investment liaison with the investment partners, NEO, the advisory firm’s clients include: Charles S. Cohen, Pittsburgh Brewing Co. and Xcel Brands.
A new ransomware that uses sophisticated techniques to avoid detection
The data leak „will be here soon“
As of this writing, Maze has leaked information belonging to Threadstone CEO Joshua Goldberg, the group said more evidence of the stolen data „will come soon,“ according to the announcement.
Such a threat could mean that the company has not paid the ransom demanded by the group, and there is also no information about how much money in crypto was requested.
Cointelegraph contacted representatives of Threadstone Advisors, LLC, but has not yet received a response, we will update this article with comments.
Brett Callow, a threat analyst at the malware lab, Emsisoft, told Cointelegraph
„The fact that other ransomware groups have adopted the dual attack style of encryption and exit from Maze is likely to prove that the strategy works and, as a result, will probably be adopted by those groups that do not currently steal data. Of course, the strategy will be more effective in some cases than others, and companies that hold highly confidential information relating to their clients, such as M&A advice, may be more willing to pay up front than other companies just to prevent their data from being posted online“.
U.S. Congress Assesses Digital Dollars for Stimulus Payments for Stalled COVID-19
Ransomware groups are becoming increasingly aggressive
The cybersecurity expert warns that the tactics employed by ransomware groups such as Maze are becoming „increasingly extreme,“ claiming that hackers are using stolen data as a weapon for making threats against business partners, customers and to damage companies‘ reputations.
Callow added the following:
„This may be a natural evolution, or it may be a response to the Covid-19 pandemic, with so many companies facing financial problems, fewer may be able or willing to pay ransom demands, causing groups to seek to exert additional pressure in an attempt to increase their conversion rate.
The US subsidiary of ST Engineering Aerospace recently suffered a ransomware attack, according to Maze’s reports, it managed to extract approximately 1.5 TB of confidential data from the company and its partners.
The group also claimed to have hacked into the U.S. egg producer Sparboe in a post on its website. The blog post includes sample data, which the group claims was stolen from the company.