Akira Ransomware Hits Tanya Creations Exposing 100GB Data
Incident Date:
October 4, 2024
Overview
Title
Akira Ransomware Hits Tanya Creations Exposing 100GB Data
Victim
TANYA Creations
Attacker
Akira
Location
First Reported
October 4, 2024
Ransomware Attack on Tanya Creations by Akira Group
Tanya Creations, a distinguished player in the fashion jewelry industry, has fallen victim to a ransomware attack orchestrated by the notorious Akira group. The breach, identified on October 7, has resulted in the unauthorized acquisition of 100 GB of sensitive company data, posing significant risks to its operations and reputation.
About Tanya Creations
Founded in 2015 and based in East Providence, Rhode Island, Tanya Creations operates as a division of Unique Designs, Inc. The company specializes in the design, sales, and distribution of fashion jewelry and accessories, catering to both private label and branded needs within the retail industry. With approximately 125 employees, Tanya Creations generates substantial annual revenue, estimated at $71.1 million. The company is recognized for its commitment to quality and innovation, which has allowed it to maintain a competitive edge in the market.
Attack Overview
The Akira ransomware group, known for its aggressive tactics and sophisticated attack methods, has added Tanya Creations to its list of victims. The attack involved the exfiltration of a significant amount of data, which could potentially include sensitive business and client information. This breach underscores the persistent threat of ransomware attacks in the retail and design sectors, where companies like Tanya Creations are targeted due to their valuable intellectual property and customer data.
About Akira Ransomware Group
Emerging in March 2023, Akira has quickly gained notoriety for its hybrid encryption scheme and double-extortion model. The group employs a combination of ChaCha20 stream cipher and RSA public-key cryptography, making it a formidable threat. Akira's operations are characterized by their focus on exfiltrating data before encryption, pressuring victims to pay ransoms by threatening to publish stolen information on dark web platforms. The group has been linked to the defunct Conti ransomware group, sharing similar methodologies and tools.
Potential Vulnerabilities
Tanya Creations, like many companies in the fashion and retail sectors, may have been vulnerable to such an attack due to potential weaknesses in cybersecurity measures. The Akira group is known to exploit vulnerabilities in VPN software and use compromised login credentials to gain unauthorized access. The attack on Tanya Creations highlights the importance of effective cybersecurity practices to protect against sophisticated ransomware threats.
Sources
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.