[ad_1]
The NFL’s San Francisco 49ers crew is recovering from a cyberattack by the BlackByte ransomware gang who claims to have stolen knowledge from the American soccer group.
The 49ers confirmed the assault in a press release to BleepingComputer and mentioned it brought about a short lived disruption to parts of their IT community.
Whereas the 49ers didn’t affirm whether or not hackers efficiently deployed the ransomware, they mentioned they’re nonetheless within the technique of recovering techniques, indicating that gadgets had been possible encrypted.
“The San Francisco 49ers just lately turned conscious of a community safety incident that resulted in momentary disruption to sure techniques on our company IT community. Upon studying of the incident, we instantly initiated an investigation and took steps to comprise the incident.
Third-party cybersecurity companies had been engaged to help, and legislation enforcement was notified.
Whereas the investigation is ongoing, we consider the incident is proscribed to our company IT community; to this point, now we have no indication that this incident entails techniques exterior of our company community, reminiscent of these related to Levi’s Stadium operations or ticket holders.
Because the investigation continues, we’re working diligently to revive concerned techniques as shortly and as safely as attainable.”
San Francisco 49ers
To conduct a ransomware assault, risk actors breach a company community and silently unfold to different gadgets whereas stealing knowledge. The hackers in the end deploy malware that encrypts the entire gadgets on the community, whereas leaving ransom notes demanding a cryptocurrency fee to obtain a decryptor.
The ransomware gangs then use the stolen information as leverage, threatening to launch them if they don’t seem to be paid a ransom.
The BlackByte gang claimed duty for the 49er’s assault yesterday, proper because the NFL will get prepared for Tremendous Bowl 2022, by starting to leak information that they declare are stolen information.
Supply: BleepingComputer
The leaked knowledge is a 292MB archive of information that the risk actors say are stolen 2020 invoices from the 49ers’ community.
BlackByte normally releases its victims’ knowledge in growing quantities to additional stress the sufferer into paying.
Whereas it’s not recognized how a lot knowledge has been stolen through the assault on the 49ers, BlackByte has stolen gigabytes of knowledge from earlier victims.
Who’s BlackByte?
The BlackByte ransomware operation launched in July 2021 when it started focusing on company victims worldwide.
The ransomware gang will not be notably energetic in comparison with different teams, however they’ve performed quite a few profitable assaults, which means the enterprise shouldn’t ignore them.
Supply: BleepingComputer
The ransomware gang is recognized to make the most of vulnerabilities to achieve preliminary entry to a company community, illustrating the necessity to all the time have the most recent software program updates put in.
In October 2021, the BlackByte operation made the numerous mistake of reusing the identical decryption/encryption key in a number of assaults.
Whereas BlackByte shortly mounted the bug, it allowed cybersecurity agency Trustwave to create a free decryptor permitting some victims to recuperate their information free of charge.
[ad_2]
