Cyber gang cl0p claims numerous further data thefts
The criminal group cl0p has published dozens of new victim names. Among them are major brands like Broadcom, Canon, and Mazda.
(Image: Black_Kira/Shutterstock.com)
Around 30 company names have newly appeared on the darknet page of the criminal organization cl0p. Among them are some well-known and globally active ones.
(Image:Â heise medien)
Among the allegedly affected companies are giants like Broadcom, Canon, Mazda (and additionally Mazda USA), or tire manufacturer Michelin. So far, there are no statements or confirmations from the affected companies regarding any data leaks that may have recently occurred. The perpetrators have currently only created general subpages on cl0p's darknet leaksite without details or excerpts from the stolen data. It is therefore unclear to what extent and what kind of data the criminals claim to have obtained.
Previously credible breach reports
So far, announced data thefts by cl0p have been genuine; they were regularly not bluffs. Around the beginning of the month, cl0p Logitech and the Washington Post added to the list of compromised companies were added. About a week later, Logitech confirmed that attackers gained access to computer systems and copied data from customers and employees were copied. The Washington Post also acknowledged a data privacy incident at the beginning of the week admitted that data from nearly 10,000 former and current employees and contractors was copied by criminal intruders.
Videos by heise
Most recently, cl0p attacked a series of victims through a security vulnerability in Oracle's E-Business Suite (EBS), thereby gaining unauthorized access to sensitive data. At the beginning of October, Oracle warned of ongoing attacks on the vulnerabilities and subsequent extortion attempts. Since then, updates have also been available, which admins should definitely install. The zero-day security vulnerability had been known to the attackers since at least June of this year.
(dmk)
