Hackers gain access to personal data from a staggering 751,000 Frontier Communications customers.
In a recent report by Symantec, it has been revealed that RansomHub is the rebranded version of Knight ransomware. However, as of April 2021, no publicly reported victims have been explicitly linked to the "RansomHub" cyberattack.
The search results discussed various ransomware activities and victims but did not mention RansomHub-specific victims by name for that period. RansomHub went offline around the end of March 2021, and another ransomware group, Qilin, became prominent, becoming the top ransomware group by April 2021.
Several ransomware victims are mentioned in the context of other attacks and groups, but none are attributed directly to RansomHub around April 2021. Examples of such victims include a US marketing agency attacked by BlackMatter in September 2021, healthcare organizations affected by ransomware and data breaches, and the Interboro School District, which suffered a breach in October 2021.
The Qilin ransomware group, which rose after RansomHub went offline, claimed numerous victims in April 2021 and afterward but is distinct from RansomHub’s timeframe and activities.
Meanwhile, Frontier Communications, a major provider of phone and internet services based in Dallas, disclosed a cyberattack in April that exposed the personal data of over 751,000 people to the Maine Attorney General. The attack, suspected to be the work of a cybercrime group, led to a disruption of Frontier Communications' operations, which was deemed material according to an April filing with the Securities and Exchange Commission.
RansomHub has been linked to the attack, claiming credit for it earlier this month. Brett Callow, a threat analyst at Emsisoft, posted screenshots of allegedly stolen data on the social media platform X, which RansomHub claimed were from the attack. RansomHub has been linked to approximately 45 cyberattacks globally since early February, according to an analysis by Forescout. Thirteen of the 45 cyberattacks claimed by RansomHub occurred in the U.S.
It's important to note that the SEC filing did not specify whether the 751,000 people affected by the Frontier Communications cyberattack were among the 45 victims linked to RansomHub by Forescout's analysis. Officials from Frontier Communications were not immediately available for comment.
In a separate incident, the Change Healthcare attack, like the one on Frontier Communications, was not expected to have a material impact on the company's financial results, according to an SEC filing. The attack caused significant disruption to hospitals and prescription drug access across the U.S., but the SEC filing did not provide any information about the nature or extent of the damage caused by the Frontier Communications cyberattack to its IT network.
In conclusion, while no publicly disclosed victim details from RansomHub’s attacks were reported at that time based on the available data, the cyber threat posed by RansomHub remains a significant concern, as evidenced by the Frontier Communications cyberattack.
- RansomHub claimed credit for the Frontier Communications cyberattack, which exposed the personal data of over 751,000 people and led to a disruption of their operations.
- The cyberattack on Frontier Communications was not the only incident, as the Change Healthcare attack also caused significant disruption but did not have a material impact on the company's financial results.
- Despite no directly attributed victims to RansomHub around April 2021 from the search results, the threat posed by RansomHub remains a significant concern in the general-news and crime-and-justice realms, as highlighted by the Frontier Communications cyberattack.
