Hackers set $1M ransom for data stolen from insurance company

Previously-unknown group Black Shadow, which claimed responsibility for the alleged attack on Shirbit, has given the firm 72 hours or the private information will be sold to third parties
Ynet, i24NEWS|
The Black Shadow hacker group, who took responsibility for a cyber attack on the Israeli insurance company Shirbit on Monday, is demanding a ransom of 50 Bitcoins - worth approximately $1 million - for the data the group allegedly stole from the company's servers.
  • Follow Ynetnews on Facebook and Twitter

  • The group further threatened to double the ransom every 24 hours, adding they are in possession of a trove of personal data that they will sell to "third parties" unless the ransom is paid in full within three days.
    4 View gallery
    Illustrative
    Illustrative
    Illustrative
    (Photo: Shutterstock)
    The group took responsibility for the attack in a Twitter post on Monday, where it also released several personal documents such as ID numbers and drivers licenses and addresses that were allegedly stolen from Shirbit's systems - including that of a senior judge.
    “A huge cyberattack has taken been [sic] place by Black Shadow team. There has been a massive attack on the network infrastructure of Shirbit Company , which is in israel [sic] economic sphere” tweeted the group, while tagging several major media outlets around the world including the BBC, Reuters and CNN. The Black Shadow account was later suspended by Twitter.
    4 View gallery
    A tweet from the BlackShadow account, which was later suspended
    A tweet from the BlackShadow account, which was later suspended
    A tweet from the Black Shadow account, which was later suspended
    (Photo: Screenshot)
    The biggest worry of both Shirbit and the National Cyber Directorate - both of which are investigating the attack - lies in the fact that Shirbit was awarded the tender to provide car insurance for state employees several years in a row, meaning that the company holds vast amount of information on civil servants that may have now been compromised.
    4 View gallery
    דלף מידע מחברת ביטוח, חשד למתקפת סייבר
    דלף מידע מחברת ביטוח, חשד למתקפת סייבר
    Shirbit insurance company
    According to cyber experts, this is the same group behind a thwarted attack on Israel's major defense corporations a few months ago.
    The Capital Market, Insurance and Savings Authority, which supervises insurance and pension funds in Israel, said: "An initial inspection shows that the information leaked was customers' insurance details… The inspection is currently continuing.”
    Omri Segev Moyal, a cyber expert from cybersecurity firm Profero, said: "Israel is a preferred target for 'hacktivists', especially Islamists. We see such attacks on a regular basis… Due to the escalation with Iran, there is a real possibility they are behind the attack and are hiding behind the activist group instead of being officially exposed."
    4 View gallery
    דלף מידע מחברת ביטוח, חשד למתקפת סייבר
    דלף מידע מחברת ביטוח, חשד למתקפת סייבר
    Some of the personal data allegedly leaked by Black Shadow
    Einat Meyron, an expert in preparing for and handling cyber strikes in businesses said: "The [leaked] documents indicate the scale and depth of the hack. As everyone knows, Shirbit won the car insurance tender for state employees, so the incident is troubling for many. The fact that they gained access to much extensive information indicates a continuum of failures, lack of control and poor management. "
    Dr. Harel Menashri, one of the founders of the Shin Bet security service’s cyber directorate and the current head of cyber at Holon Institute of Technology, said the attack is most troubling.
    "We should remember that Shirbit had the tender for civil servants," said Menashri. "The thing now is to do damage control [as] these people - including civil servants and the senior judge - may be exposed to coercion, extortion and even surveillance.”

    Republished with permission from i24NEWS
    Comments
    The commenter agrees to the privacy policy of Ynet News and agrees not to submit comments that violate the terms of use, including incitement, libel and expressions that exceed the accepted norms of freedom of speech.
    ""