Continuing with the ransomware attacks, this time, the attackers have targeted the educational sector. Reportedly, Michigan State University has suffered a ransomware attack. The attackers have threatened to leak the stolen data in case the victim fails to pay the ransom.
Michigan State University Ransomware
Recently, the criminals behind the NetWalker (Mailto) ransomware have claimed to have hacked the Michigan State University (MSU).
In a blog post, the gang has announced to have stolen data from the network of MSU – an institution with over 40,000 students.
To add weight to their claim, the hackers have shared snapshots of the Microsoft Windows file directory. The images presumably show users’ folders from the university’s network.
The following tweet from Ransom Leaks shares the details.
#NetWalker #Ransomware is threatening to #leak data from #breach of Michigan State University (@michiganstateu) in 6 days. MSU has nearly 40k students. Included in the leak sample is student identification like passports and banking info. pic.twitter.com/SNXu5cbLwx
— Ransom Leaks (@ransomleaks) May 27, 2020
Talking to EdScoop, Brett Callow, an analyst from security firm Emsisoft, explained that the NetWalker attackers have changed their strategy. Now, instead of merely locking the victim out of the systems, the attackers steal data. Also, they threaten to publish the data publicly in case of failure to pay the ransom.
Uniquely, the leak site has auto-publishing functionality and a timer. When the time has elapsed, the data is automatically published along with the password needed to access it.
In the case of MSU as well, the hackers have done the same.
According to the reports, the hackers have threatened to publish the hacked data online in case MSU fails to pay the ransom within six days. It means that even if a victim manages to decrypt the ransomware-encrypted data, they have to suffer the loss – if not monetary, then moral loss.
No Disclosure From MSU Yet
For now, Michigan State University has officially disclosed nothing about the ransomware attack. Nor did they have acknowledged anything on their social media accounts.
Nonetheless, an MSU spokesperson, Dan Olsen, has shared the following statement with EdScoop via email.
We are aware of a possible intrusion and we are actively looking into it.
Earlier this month, the Ruhr University Bochum (RUB) also suffered a ransomware attack, following which, its system went down.
Latest posts by Abeerah Hashim (see all)
- Microsoft Released Out-of-Band Fixes For Two Remote Code Execution Bugs - October 21, 2020
- Multiple Vulnerabilities In Discord Desktop App Could Allow RCE Attacks - October 21, 2020
- Review Of KeepSolid Passwarden – Your Ultimate Password Manager - October 20, 2020