The LockBit ransomware gang claimed to have stolen six terabytes of data from Accenture’s network and demanded a $50 million ransom. However, Accenture was within the means of notifying its shoppers of the ransomware attack that reportedly compromised 2,500 computer systems,accordingto Hudson Rock. Michael Goldstein, CEO of LAN Infotech, a Fort Lauderdale, Fla., resolution provider that was affected by the recent Kaseya MSP ransomware attack, informed CRN he was “stunned” to learn that Accenture was the latest victim of a ransomware attack. Accenture, in an emailed response to a request for data from CRN, confirmed the ransomware attack, however mentioned there was no impact on the corporate.
It adds a novel method to work together with the Active Directory to spread rogue malware to local domains by disabling antivirus, making it easier for model spanking new malware operators to interact in operations. Although the vulnerability has no known RCE or PE exploits, it has been exploited by several ransomware prior to now, particularly, Apostle , Cring , Pay2Key , and Conti . To add further fuel to the fire, Cyble suggest that the attackers might have been granted entry to Accenture’s networks via an ‘insider’.
Ransomware attackers stay indiscriminate relating to their targets, as lengthy as they seem profitable. Large firms with strategic cyber safety architectures and infrastructure usually are not immune. Amidst a wave of assaults affecting main enterprises internationally and across the US, government officials have declared ransomware a national safety risk. In the attack disclosed on Wednesday, the hacker group reportedly used LockBit ransomware to target Accenture, which is No. 1 on CRN’s Solution Provider 500 for 2021.
The group was also actively recruiting corporate insiders to facilitate its ransomware attacks in trade for hundreds of thousands of dollars. The ransomware gang additionally sought partners to offer Remote Desktop Protocol and Virtual Private Network exploits for initial access and Cobalt Strike and Metasploit for risk emulation. Accenture has reportedly fully restored techniques from backup, in accordance with Reuters. The ransomware attack doesn’t seem to have effected Accenture’s operations or shopper techniques. As many as 2,500 computers belonging to employees and partners may have been affected amidst the attack.
Content strives to be of the highest quality, objective and non-commercial. In a post on its Dark Web website, LockBit offered up Accenture databases on the market, together platform competition opportunity techkantrowitz with a requisite jab at what the gang deemed to be Accenture’s pathetic safety. Sergiu Gatlan has lined cybersecurity, technology, and some other topics for over a decade.