The claim of a cyberattack on the massive consulting firm Deloitte was discovered on BrainChiper’s Data Leak Site at 14:35 yesterday. There is a countdown for Deloitte that indicates when the data will be published, which the criminals estimate will happen in ten days and twenty hours.
‘Unfortunately, giant companies(Deloitte) do not always do their job well, the fundamentals of computer security were not respected” ‘we will show the great work, or maybe not, of monitoring’ and ‘we will explain what tools we have used and are using today’ .
Said the Ransomware Group
According to claims made by the popular ransomware gang Brain Cypher, Deloitte UK was penetrated, and more than 1 terabyte of private information was stolen from the large professional services company.
“Soon we will tell you about this incident. We will provide an example of data that has leaked. The volume of compressed data more than 1tb”
About The Threat Actor Of Deloitte
One of the more recent players on the scene is BrainCipher. They set themselves aside with an attack on Indonesia’s National Data Centre in June of this year, which the Indonesian government claimed occurred and caused more than 200 government services to stop functioning. $8 million in Monero cryptocurrency was wanted in exchange for this attack.
A corporate network will be breached by Brain Cypher, which will then spread laterally to additional machines. The threat actors spread the malware across the network after obtaining Windows domain admin credentials.
Since the organisation has not yet posted an official comment regarding the incident on its website, we are unable to verify the news’ validity at this time. Since the presented information is derived from publicly available underground sources, it should be regarded as intelligence rather than final confirmation.
The threat actor’s Tor negotiation site receives a unique encryption ID from each victim. The negotiation site is rather straightforward, similar to many other recent ransomware operations, with only a chat facility for the victim to interact with the ransomware gang.
