IT service provider HTC Global Services has officially confirmed a cyberattack after screenshots of stolen data were leaked by the ALPHV ransomware gang. While HTC has not provided a detailed statement, they acknowledged the incident on their X account, assuring active investigation and the engagement of cybersecurity experts. The leaked data reportedly includes passports, contact lists, emails, and confidential documents. Cybersecurity expert Kevin Beaumont suggests that the company may have been breached through the Citrix Bleed vulnerability. ALPHV, previously known as DarkSide and BlackMatter, has a history of targeting global enterprises.
HTC Global Services, a company specializing in IT services and business consulting, has fallen victim to a cyberattack, according to the ALPHV ransomware gang. The attackers leaked screenshots of allegedly stolen data, including passports, emails, and confidential documents. HTC, known for providing technology and business services to various industries, has acknowledged the incident on their X account. The company is actively investigating the breach and has enlisted cybersecurity experts to address the situation. The ALPHV ransomware group, previously associated with DarkSide and BlackMatter, has a track record of targeting global enterprises.
While HTC Global Services has not provided extensive details, the ALPHV ransomware gang listed the company on their data leak site, revealing screenshots of the purportedly stolen data. The leaked information includes passports, contact lists, emails, and confidential documents. HTC, a managed service provider offering technology and business services, acknowledged the cybersecurity incident on their X account. The company has initiated an investigation and engaged cybersecurity experts to ensure the security and integrity of user data. The ALPHV ransomware operation, formerly known as DarkSide and BlackMatter, is recognized for targeting global enterprises and adapting its tactics.
ALPHV, the ransomware group associated with the recent attack on HTC Global Services, has been active since November 2021, following rebranding from DarkSide and BlackMatter. This group gained notoriety for breaching Colonial Pipeline, leading to increased law enforcement scrutiny. ALPHV, known for its adaptive tactics and targeting of global enterprises, has recently attacked critical infrastructure, including a publicly owned electricity provider and a hospital network in the United States. The attacks on critical infrastructure are expected to draw further attention from law enforcement agencies.