A gaggle of hackers dubbed Maze claims to have compromised the infrastructure of Banco BCR, a Costa Rican state-owned commercial enterprise institution, and is now threatening to leak hundreds of thousands of bank card numbers.
On April 30, Maze claimed that it has scoped out the commercial enterprise institution in August 2019:
“According to Financial Institutions Protocol this bank had to advise other institutions about the security breach case. But nothing was made. Servers and workstations were not blocked. Private data was not secured. Anyway the Bank definite to conceal information about the breach. Though the security mortalnel were able to analyze the attack logs and to see that the attackers have accessed the defrayal processing system. We have stopped the attack as the possible damage was too high.”
Maze states that subsequently, in February 2020, they checked the techniques and detected that nothing was performed to repair the cybersecurity vulnerabilities. The hackers declare that attributable this, they determined to steal the info from the commercial enterprise institution, together with dealings info and bank card information:
“We have over 11 milion charge plate credentials. Over 4 millions of those charge plate game are unique. [Of those card game,] 140,000 belong to US citizens.”
The ransomware group introduced on May 5 that it was going to leak the cognition with out concealing card numbers. While on this explicit occasion there isn’t any information on the amount of Bitcoin (BTC) requested by the hackers, the group has ransomed information up to now.
Do not take ransomware group’s claims too critically
Brett Callow, cybersecurity risk analyst at Emsisoft beforehand cognitionable Cointelegraph that hacker’s claims ought to be seen suspiciously:
“Claims made by ransomware groups should be dotty a grain of salt. […] The details that the criminals choose to release will be cherry-picked and only information that they want to be in the public domain – probably because they believe it will help their cause in some way.[…] The press should avoid portrayal ransomware groups as being in any way Robin Hood-like or repetition claims that assist them.”
As of press time, Banco BCR has not answered Cointelegraph’s request for remark.
Ransomware exercise continues amid the pandemic
As Cointelegraph according in late April, a latest report confirmed a significant drop inside the variety of ransomware assaults carried out throughout the pandemic on the United States public sphere. Still, that is unlikely to be connected to the cybercriminals’ willingness to keep away from damaging the general public sphere amid the miserableness already brought on by the coronavirus.
In reality, on the finish of April, hackers accordingly compromised the biggest well being heart in Pueblo County, Colorado with cryptocurrency ransomware. While the hospital’s official statements declare that it gained’t have an effect on affected mortal care, employees allegedly expressed that the paper-based record-keeping strategies to which they’ve resorted are cumbersome and will negatively influence providers.