Ransomware

Brenntag sheds light on DarkSide ransomware attack

July 3, 2021
German chemical distribution firm Brenntag confirmed the DarkSide ransomware attack that targeted its North America division in April, which resulted in the exfiltration of 150GB of data, reports BleepingComputer.

Data breach notification letters sent to impacted individuals last month revealed that Brenntag had known of the intrusion on April 28, two days after DarkSide began its attack, after which it immediately disconnected affected systems for threat containment.

Brenntag said that DarkSide attackers were able to steal individuals' birthdates, Social Security Numbers, driver's license numbers and some health data, but outside cyberforensic experts sought by the company found no fraudulent use of the stolen data.

Meanwhile, more than 6,700 of the affected individuals have been asked to examine their account statements and monitor free credit reports for identity theft and fraud attempts.

BleepingComputer also confirmed the $4.4 million ransom paid by Brenntag to secure a file decryptor and curb a data leak.
Jill Aitoro

SC Media Editor in Chief Jill Aitoro has 20 years of experience editing and reporting on technology, business and policy. She also serves as editorial director at SC Media’s parent company, CyberRisk Alliance. Prior to joining CRA, she worked at Sightline Media as editor of Defense News and executive editor of the Business-to-Government Group. She previously worked at Washington Business Journal and Nextgov, covering federal technology, contracting and policy, as well as CMP Media’s VARBusiness and CRN and Penton Media’s iSeries News.

prestitial ad