Yamaha Canada Music has confirmed having its data exfiltrated in a cyberattack following separate claims that it had been compromised by the BlackByte and Akira ransomware operations, according to The Record, a news site by cybersecurity firm Recorded Future.
No details regarding the intrusion have been provided by Yamaha Canada but the company noted that it has immediately worked to mitigate the attack and that it has already begun notifying individuals whose data may have been impacted by the incident.
"...[W]e have taken decisive actions to reinforce our network defenses and ensure enhanced security measures moving forward," said Yamaha Canada.
BlackByte included Yamaha Canada on its list of victims on June 14 before the company was added by Akira ransomware on its leak site on July 21.
Increasingly prevalent double postings may be brought upon by affiliates working for different ransomware operations, said Recorded Future ransomware researcher Allan Liska.
Meanwhile, Emsisoft threat analyst Brett Callow suggested collaboration and data sharing among ransomware operations as the driver of multiple ransomware claims on a single victim.
Utilization of Slack will be halted across most of Disney's businesses by the end of the year, said Disney Chief Financial Officer Hugh Johnston in a report in the Status media newsletter.
Attacks involved the utilization of Amazon S3 bucket and Content Delivery Network-hosted sites spoofing Google CAPTCHA pages and other verification sites, which include instructions that trigger a malicious PowerShell command downloading Lumma Stealer and proceeding with the exfiltration of sensitive device data.
Some of the 340 GB of sensitive data purportedly stolen from the City of Pleasanton, including names, birthdates, credit card numbers, and other personal and corporate financial information, have already been exposed by Valencia.