Crown Resorts, the largest gambling and entertainment company in Australia, has suffered a data breach after its secure file-sharing server was breached using a zero-day vulnerability.
The Clop ransomware gang has claimed responsibility for the attack, which is part of its new strategy of performing data extortion attacks.
While the company says that there is no evidence of the data breach impacting customers, it has confirmed that it is being extorted by the group, which claims to have stolen data from its networks.
Furthermore, Crown Resorts is just the latest in a long list of victims that have been impacted by the GoAnywhere breaches. These include CHS, Hatch Bank, Rubrik, the City of Toronto, Hitachi Energy, Procter & Gamble, and Saks Fifth Avenue.
The GoAnywhere software vendor, Fortra, is facing a class action lawsuit in the United States, accused of failing to implement adequate cybersecurity measures to protect the private data stored in its network.
Additionally, Clop has a history of exploiting zero-day flaws to steal data from companies and perform massive extortion waves. In February, the group claimed to have stolen data from 130 organizations over ten days utilizing a GoAnywhere zero-day vulnerability. While it has threatened to release the stolen data, it has not yet leaked anything on its data leak site.
Meanwhile, Crown Resorts has stated that it will continue to work with law enforcement to investigate the security incident and will provide updates if new evidence surfaces.