INC Ransom Group Targets Sensory Spectrum in Ransomware Attack

Incident Date:

June 17, 2024

World map

Overview

Title

INC Ransom Group Targets Sensory Spectrum in Ransomware Attack

Victim

Sensory Spectrum

Attacker

Inc Ransom

Location

New Providence, USA

New Jersey, USA

First Reported

June 17, 2024

Ransomware Attack on Sensory Spectrum by INC Ransom Group

Company Profile: Sensory Spectrum

Sensory Spectrum, a prominent management consulting firm founded in 1986, specializes in sensory evaluation and consumer research. With an annual revenue of $52.7 million and over 200 employees, the company is a leader in its field, offering services that help businesses understand consumer perceptions of their products through sensory experiences. Sensory Spectrum's unique approach integrates scientific methods and consumer insights, making it an attractive target for cybercriminals due to its valuable data and intellectual property.

Details of the Ransomware Attack

The ransomware group INC Ransom recently claimed responsibility for a cyberattack on Sensory Spectrum. This attack compromised the company's operations by encrypting sensitive data and threatening to release it unless a ransom was paid. The double extortion tactic used by INC Ransom highlights the severe implications of such breaches on companies that handle extensive consumer and proprietary data.

Profile of INC Ransom

INC Ransom is known for its sophisticated cyberattacks on various sectors, employing methods like spear-phishing and exploiting vulnerabilities, such as the CVE-2023-3519 in Citrix NetScaler. The group's strategy includes the use of both commercial software and legitimate tools for reconnaissance, making their attacks particularly challenging to predict and mitigate.

Potential Vulnerabilities and Entry Points

Given the details of the attack and INC Ransom's known methodologies, it is plausible that Sensory Spectrum was compromised through spear-phishing or by exploiting unpatched vulnerabilities within their network. The firm's significant data pool and integration of various sensory evaluation technologies could have created multiple entry points for the attackers.

Sources

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.