Press ESC to close

Atos, contractor for French military and intelligence agencies, dismisses ransomware attack claims

Category Details
Threat Actors Space Bears (linked to Phobos ransomware-as-a-service group)
Campaign Overview Space Bears claims to have compromised Atos’ internal database, demanding ransom and threatening to release data on January 8, but Atos denies the claims.
Target Regions (Or Victims) Atos (France), and potentially other victims listed on the Space Bears darknet site.
Methodology Ransomware group uses extortion tactics, threatening to release stolen data.
Product Targeted Atos infrastructure and internal databases (unconfirmed breach).
Malware Reference Phobos ransomware-as-a-service group (Space Bears is linked to this group).
Tools Used Phobos ransomware (used by affiliates of Space Bears).
Vulnerabilities Exploited Unknown (claims of compromise unsubstantiated by Atos).
TTPs Ransomware, extortion via stolen data, darknet listings, and threats of public data release.
Attribution Space Bears (linked to Phobos ransomware-as-a-service group), with potential Russian ties.
Recommendations Regularly review cybersecurity protocols, monitor third-party infrastructure, and ensure strong incident response practices.
Source The Record

Read full article: https://therecord.media/atos-dismisses-ransomware-claims

The above summary has been generated by an AI language model

Stay Updated with Our Newsletter

  

Source: The Record

Published on: January 5, 2025

Leave a Reply

Your email address will not be published. Required fields are marked *