Enel victim of ransomware attack: the requested ransom is 14 million dollars (in bitcoin)

Source: HW Upgrade added 29th Oct 2020

  • enel-victim-of-ransomware-attack:-the-requested-ransom-is-14-million-dollars-(in-bitcoin)

5TB of information stolen from the Enel Group : in addition to the ransom note, also the threat to disclose confidential information and data within a week

of Andrea Bai published on , at 12: 19 in the Security channel

It is in the

Enel was the victim of a ransomware attack over the past few weeks. It is the second time that this happens 2020 and this time the company is faced with a request for ben’s ransom 14 millions of dollars to get hold of the encryption key and also prevent attackers from releasing several terabytes of illegally stolen information.

Last already 19 October a security researcher shared with the US website BleepingComputer a ransom note from the hacker group Netwalker and which seemed to arise from an attack on the Enel Group. To a request for further information, the company did not offer any response.

Ransomware attack on Enel: ransom demand and threat of publication of confidential information

A few days later NetWalker actually confirmed that it had carried out an attack on the Enel Group, after having sent a message to their support chat teasing the company : “Hi Enel. Don’t be afraid to write to us”. The actual confirmation arrived yesterday, when Netwalker included the Enel Group in the list of its victims, sharing a screenshot of the unencrypted files taken by the company during the cyber attack. The incident was shared on Twitter by TG Soft .

2020 – 10 – 27 #Enel hit again by #ransomware.

This time #NetWalker hitting @EnelGroupIT to steal 5 TB of data.

In June she was hit by # Snake @ AgidCert @guelfoweb @csirt_it @arturodicorinto @JAMESWT_MHT @ 58 _ 158 _ 177 _ 102 @BleepinComputer pic.twitter.com/0WR89 iqGfG

?? TG Soft (@VirITeXplorer) October 27, 2020

The hacker group claims to have stolen 5 terabytes of information, and is ready to release some of it by one week if the company fails to pay the ransom. Not only that: the hackers promised to carefully analyze all the stolen information in search of “interesting material” from publish on their site.

This is a sadly tried and true strategy that aims to put pressure on the victim to force her to pay the ransom, and which often finds success by allowing the attacker to pocket a lot of money. money. The redemption request, as mentioned for 14 millions of dollars, was requested in little more than 1234 bitcoin .

At the beginning of June, the internal network of the Enel Group was the target of the Snake ransomware, also known as EKANS , but the attack attempt was blocked in the bud before the malware could spread.