Everest Ransomware Targets Studio Notarile Bucci – Olmi in 400 GB Data Breach
Incident Date:
July 17, 2024
Overview
Title
Everest Ransomware Targets Studio Notarile Bucci – Olmi in 400 GB Data Breach
Victim
Studio Notarile Bucci
Attacker
Everest
Location
First Reported
July 17, 2024
Everest Ransomware Group Targets Studio Notarile Bucci – Olmi
Overview of Studio Notarile Bucci – Olmi
Studio Notarile Bucci – Olmi is a prominent notary office located in Ancona, Italy. Led by Renato Bucci, the firm specializes in a wide range of legal and notarial services, including real estate transactions, corporate law, wills, and estate planning. The office is known for its personalized service, assisting both private individuals and businesses in navigating complex legal processes while ensuring compliance with the law.
Details of the Ransomware Attack
The Everest ransomware group has claimed responsibility for a recent cyberattack on Studio Notarile Bucci – Olmi. The attackers reportedly exfiltrated 400 GB of data, including filled-in forms and personal documents, from the firm's systems. This significant breach highlights the growing threat of ransomware attacks targeting the legal and notarial services sector.
About the Everest Ransomware Group
The Everest ransomware group has been active since at least December 2020, initially focusing on data exfiltration before transitioning to ransomware operations. The group is known for its sophisticated tactics, including the use of legitimate compromised user accounts and Remote Desktop Protocol (RDP) for lateral movement. Everest employs AES and DES algorithms to encrypt files, adding the “.EVEREST” extension to the encrypted files.
Penetration and Vulnerabilities
While the exact method of penetration in this attack is not publicly disclosed, Everest typically exploits vulnerabilities in remote access protocols and leverages compromised user accounts to gain initial access. The legal and notarial services sector, which handles sensitive and personal information, is particularly vulnerable to such attacks due to the high value of the data involved.
Impact on Studio Notarile Bucci – Olmi
The breach has potentially exposed a vast amount of sensitive information, posing significant risks to the firm's clients. Despite this setback, Studio Notarile Bucci – Olmi continues to operate, focusing on maintaining trust and security in their services. The incident underscores the critical need for robust cybersecurity measures in the legal sector.
Sources
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.