Incident: Russian ransomware gang AlphV targets pathology company, law firms in latest string of attacks | ABC News (Australia)
Australian Ransomware Attack, 05 September 2023
Russian ransomware gang AlphV targets pathology company, law firms in latest string of attacks
Breached: Code Desktop, TissuPath, Strata Plan, Barry Plant Blackburn, Tisher Liner FC Law
This attack has been attributed to the Russian cybercriminal group AlphV, which is also known as BlackCat, view the AlphV Australian Ransomware Attacks.
A Russian ransomware gang called AlphV or BlackCat has attacked several Victorian businesses, including a pathology company, a law firm, a real estate agency and an owners corporation service provider.
- TissuPath, a pathology company
- Strata Plan, an owners corporation service provider
- Barry Plant Blackburn, a real estate agency
- Tisher Liner FC Law, a business and property law firm
TissuPath, Strata Plan and Barry Plant Blackburn were all clients of Core Desktop, a company based in South Melbourne which was hired to provide IT services.
The hackers claim to have stolen at least 4.95 terabytes of data, which they threaten to publish or sell unless the victims pay a ransom.
The data includes sensitive information such as patient details, financial records, credit card information and legal documents.
The attack follows a similar one on one of Australia’s largest law firms, HWL Ebsworth, in June, which resulted in the publication of 1.45 terabytes of data on the dark web.
Some of the victims say they are investigating the breach and notifying their clients, while others dispute the hackers’ claims or refuse to pay the ransom.
The federal government, which has been a client of some of the affected businesses, says it is also looking into the potential impact of the breach.
Threat intelligence platform FalconFeeds.io documented the threats sent to Victorian businesses.
