Ring, a home security firm acquired by Amazon in 2018, denies having fallen victim to a ransomware attack. On Monday, the group behind the Alphv ransomware claimed on its leaks site that it breached Ring and threatened to release data stolen from the company.
Ring responded to SecurityWeek’s inquiry, stating that it has no evidence of a ransomware event.
The Alphv ransomware family is also known as BlackCat and Noberus, and it is written in the Rust programming language.
Although it was first seen in November 2021, its operators are believed to be associated with the previously known cybercrime ring behind Darkside/Blackmatter ransomware.
The group operates under the ransomware-as-a-service (RaaS) business model and uses harvested and exfiltrated data to pressure victims into paying a ransom.
In July 2022, the Alphv group created a searchable database so that employees and customers of victim organizations could search for their potentially compromised data, shortly after creating a dedicated leak site to pressure one of their victims.
The group has breached over 100 organizations to date, and in some cases, it has launched distributed denial-of-service (DDoS) attacks against victims, as well as harassing their customers, employees, and partners, to increase pressure on them to pay the ransom.
The threat of ransomware attacks is a growing concern, with businesses and governments around the world experiencing an increase in such attacks in recent years.
Ransomware attacks can be crippling, causing severe financial losses and reputational damage to affected organizations.
Therefore, it is crucial for organizations to take proactive measures to prevent such attacks from occurring and to have strong incident response plans in place to minimize the impact if they do occur.