Data extortion group Industrial Spy has begun defacing corporate websites to post ransom notes as part of its recent efforts in the ransomware game, according to BleepingComputer.
French company SATT Sud-Est had its stolen data being sold by Industrial Spy for $500,000, with MalwareHunterTeam reporting that the firm's website had also been hacked to include a warning about the theft of 200GB of data.
Industrial Spy noted in the message that they could be contacted through email addresses included in server-stored readme files, which also detailed that the SATT Sud-Est's files would be leaked on the "Industrial Spy Market" website should the company fail to communicate with the group within the next three days.
BleepingComputer notes that while numerous techniques have been leveraged by ransomware gangs to strengthen data extortion attacks, Industrial Spy's approach of displaying a ransom note publicly on the victim's website is a first. Such a move could further pressure victims into paying attackers' demands, reports BleepingComputer.
A healthcare provider can have all the elements in place, but without context, prioritization of systems, and well-practiced incident response plan, the effectiveness of well-laid processes are limited.