Xerox Business Solutions Hit by INC Ransom
Xerox Business Solutions (XBS), a branch of Xerox Corporation, recently fell prey to a new type of ransomware called INC Ransom. The well-known tech company has acknowledged this cybersecurity incident and vowed to provide more information after conducting an extensive probe. XBS is renowned for its specialization in digital document technology. Currently, XBS is authenticating the legitimacy of the documents that the INC Ransom group alleges to have stolen. The company has sought the expertise of technology specialists to manage the situation effectively. Some examples of the purloined data that cybercriminals have released so far comprise records of XBS payments from early the previous year, invoices, filled request forms, and purchase orders from technology clients and partners. It’s worth noting that Xerox was the victim of a similar malware attack in 2020, with the Maze Ransomware group alleging to have lifted close to 100GB of data from the corporation.
Ransomware Attack Disrupts Gallery Systems
In another recent cybersecurity event, a ransomware attack against Gallery Systems, a museum software provider, led to significant system disruptions. Consequently, the attack has resulted in financial losses for several art galleries across the United States, including renowned institutions like the Museum of Modern Art in New York, the Metropolitan Museum of Art, and the Chrysler Museum of Art, among others. The assault on Gallery Systems occurred on December 28th, 2023, and the attack was attributed to the BlackCat ransomware gang. However, Artsystems, now Gallery Systems, has yet to validate this claim as the company focuses on restoring the encrypted data from backups.
ChatGPT’s Name Being Exploited by Hackers
Since August last year, Hackers have capitalized on the ChatGPT name, hosting over 65,000 web domains in an entirely different cyber threat spectrum. The aim has been to ride on the success of Microsoft-owned and OpenAI-developed conversational chatbot. Worryingly, over a fifth of these bogus websites are being used to spread ransomware, with individuals mimicking the tech giant’s AI solution, making financial gains by offering premium services at international rates. Additionally, these fraudulent websites serve as a platform for extracting sensitive user information, such as email IDs and passwords. These sites also engage in malicious activities, deploying payloads onto users' devices, thus paving the way for potential espionage, data encryption, or content-wiping incidents. A ransomware report from ESET highlighted these trends. It emphasized the continuous threat posed by cybercriminals capitalizing on software vulnerabilities, as witnessed with the MoveIT hackled by the Russian Ransomware group CLOP.
George Smith, with over a decade in tech journalism, excels in breaking down emerging tech trends. His work, spanning tech blogs and print, combines in-depth analysis with clarity, appealing to a wide readership. George's pieces often explore technology's societal impact, showcasing his foresight in industry trends.