INC Ransom Group Targets Sensory Spectrum in Ransomware Attack
Incident Date:
June 17, 2024
Overview
Title
INC Ransom Group Targets Sensory Spectrum in Ransomware Attack
Victim
Sensory Spectrum
Attacker
Inc Ransom
Location
First Reported
June 17, 2024
Ransomware Attack on Sensory Spectrum by INC Ransom Group
Company Profile: Sensory Spectrum
Sensory Spectrum, a prominent management consulting firm founded in 1986, specializes in sensory evaluation and consumer research. With an annual revenue of $52.7 million and over 200 employees, the company is a leader in its field, offering services that help businesses understand consumer perceptions of their products through sensory experiences. Sensory Spectrum's unique approach integrates scientific methods and consumer insights, making it an attractive target for cybercriminals due to its valuable data and intellectual property.
Details of the Ransomware Attack
The ransomware group INC Ransom recently claimed responsibility for a cyberattack on Sensory Spectrum. This attack compromised the company's operations by encrypting sensitive data and threatening to release it unless a ransom was paid. The double extortion tactic used by INC Ransom highlights the severe implications of such breaches on companies that handle extensive consumer and proprietary data.
Profile of INC Ransom
INC Ransom is known for its sophisticated cyberattacks on various sectors, employing methods like spear-phishing and exploiting vulnerabilities, such as the CVE-2023-3519 in Citrix NetScaler. The group's strategy includes the use of both commercial software and legitimate tools for reconnaissance, making their attacks particularly challenging to predict and mitigate.
Potential Vulnerabilities and Entry Points
Given the details of the attack and INC Ransom's known methodologies, it is plausible that Sensory Spectrum was compromised through spear-phishing or by exploiting unpatched vulnerabilities within their network. The firm's significant data pool and integration of various sensory evaluation technologies could have created multiple entry points for the attackers.
Sources
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.