The BlackCat ransomware gang confirmed last week that they were responsible for the attack that took place at Creos Luxembourg SA, a company that owns and manages electricity networks and natural gas pipelines in the Grand Duchy of Luxembourg.
Encevo, the parent company of Creos and an energy supplier to the EU five countries, open On July 25, they revealed that they were victims of a cyberattack over the weekend of July 22-23.
Although the cyberattack prevented access to customer portals for Encevo and Creos, the service itself was not affected.
Stolen Data
According to the company’s update on cyberattacks released last Thursday, initial findings show that malicious actors have stolen “a certain amount of data” from systems they have access to.
European pipeline and energy suppliers have asked their customers to be patient while the investigation is ongoing, as they have not yet been able to determine the extent of the impact. In addition, all clients received personalized notifications.
What future plans?
This process is probably still ongoing as no new information has been posted on Encevo’s media portal. The company has announced that additional details will be posted as soon as they become available. web page It was created specifically for cyberattacks.
For the time being, we recommend that all customers reset their online account credentials used to access Encevo and Creos services. Customers must also change their passwords on other websites in the same case.
Creos contacted Bleeping Computer to request additional information about the consequences of the cyberattack, but a company representative declined to comment on the matter.
What did Black Cat say?
On Saturday, Creos was added to extortion websites by the ALPHV/BlackCat ransomware organization and threatened with data exfiltration. The ransomware group claims to have stolen 180,000 files with a total size of 150 GB, including contracts, contracts, travel documents, invoices and email accounts.
Ransomware gangs have recently launched a new extortion platform that allows visitors to retrieve stolen data to pressure victims into paying the ransom.
BlackCat continues to come up with new methods for data extortion, but it appears to be making the same mistake while tracking a well-known organization that brings international law enforcement to the fore.
Follow this article if you like it. LinkedIn, Twitter, Facebook, Youtubeand Instagram More cybersecurity news and topics.