The Royal Ransomware gang claimed responsibility for a cyber attack against telecommunications company Intrado on Tuesday.
While Intrado is yet to share any information regarding this incident, sources have told BleepingComputer early this month that the attack started on December 1 and the initial ransom demand was $60 million.
The Royal Ransomware group, made up of experienced threat actors and operating without affiliates, has reportedly stolen some data from Intrado’s systems and is now threatening to publish it on their data leak site unless the company pays the ransom.
Warning that stolen data will get leaked online is a common scare tactic used by ransomware gangs to scare victims into negotiating a deal or returning to the negotiation table.
The attackers claim to have obtained internal documents, passports, and employee driver’s licenses from compromised Intrado devices.
Although the ransomware gang has not yet leaked any of the files allegedly exfiltrated from Intrado’s network, they did share a 52.8 MB archive containing scans of passports, business documents, and driver’s licenses as proof of the breach.