Ampersand, a television advertising sales and technology company jointly owned by major U.S. cable operators Comcast Corporation, Charter Communications, and Cox Communications, recently fell victim to a ransomware attack. The attack, claimed by the Black Basta ransomware gang, temporarily disrupted Ampersand’s operations.
Furthermore, the company, which has been providing viewership data to advertisers for over four decades, confirmed the incident but did not disclose the timing or whether a ransom would be paid. Despite the disruption, they have restored a majority of their regular business operations and are working with third-party advisors and law enforcement to investigate the issue.
Ampersand plays a crucial role in the television advertising industry, collecting extensive viewership data across more than 165 networks to help companies target their advertisements more effectively. The company initially emerged in 1981 as a one-stop-shop for advertisers seeking to buy cable programming in local TV markets and later evolved into the backbone of the $6 billion local television advertising business in partnership with the three largest U.S. cable companies.
While Ampersand deals with the aftermath of this ransomware incident, it is worth noting that the cable operator owners have also faced cybersecurity incidents recently, with Cox, Charter, and Comcast experiencing their own breaches and attacks.
The Black Basta ransomware gang, notorious for its brazen cyberattacks, has targeted a wide range of organizations across the globe, including the American Dental Association, Deutsche Windtechnik, Capita, ABB, and Rheinmetall. The gang was linked to the long-running cybercrime cartel known as FIN7 by cybersecurity researchers.
Additionally, the incident involving Ampersand underscores the ongoing and evolving threat of ransomware, as numerous television-related businesses, both domestically and internationally, have encountered similar attacks in recent times. The attack on Ampersand serves as a reminder of the need for robust cybersecurity measures and vigilance in the face of persistent cyber threats to critical infrastructure and data.
References:
