RansomHub Hits Pierre Diamonds: 3GB Data Stolen in Ransomware Attack
Incident Date:
August 9, 2024
Overview
Title
RansomHub Hits Pierre Diamonds: 3GB Data Stolen in Ransomware Attack
Victim
Pierre Diamonds
Attacker
Ransomhub
Location
First Reported
August 9, 2024
RansomHub Targets Pierre Diamonds in Ransomware Attack
Pierre Diamonds, a prominent Australian retailer specializing in bespoke diamond jewelry, has fallen victim to a ransomware attack orchestrated by the RansomHub group. The attack, which was discovered on August 12, 2024, has resulted in the exfiltration of 3 GB of sensitive data, including private documents, databases, webmails, and source code. The cybercriminals have encrypted the company's servers and are threatening to leak the stolen data if a ransom is not paid by August 15, 2024.
About Pierre Diamonds
Pierre Diamonds is a Sydney-based company known for its high-quality, custom-made diamond jewelry. Operating from The Strand Arcade at 412-414 George Street, the company emphasizes personalized service and quality craftsmanship. They offer a range of products, including engagement rings, wedding bands, and other fine jewelry, all crafted with ethically sourced diamonds and materials. This commitment to ethical practices and bespoke craftsmanship sets them apart in the luxury jewelry market.
Vulnerabilities and Attack Overview
The attack on Pierre Diamonds highlights the vulnerabilities that even specialized, high-end retailers face in the digital age. The company's focus on bespoke services and personalized customer interactions may have left them exposed to sophisticated cyber threats. The ransomware group RansomHub claims to have penetrated the company's systems, exfiltrating and encrypting critical data. The exact method of penetration remains unclear, but it is likely that the attackers exploited weaknesses in the company's cybersecurity infrastructure.
About RansomHub
RansomHub is a relatively new player in the ransomware landscape, believed to have roots in Russia. Operating as a Ransomware-as-a-Service (RaaS) group, RansomHub distinguishes itself by making claims and backing them up with data leaks. Affiliates receive 90% of the ransom money, with the remaining 10% going to the main group. The group's ransomware strains are written in Golang, a trend that is becoming more common in the ransomware world. RansomHub has targeted various countries and sectors, including healthcare and retail, without following a specific pattern.
Potential Impact and Response
The ransomware attack on Pierre Diamonds could have significant repercussions for the company, both financially and reputationally. The exfiltration of sensitive data, including private documents and source code, poses a severe threat to the company's operations and customer trust. As the deadline for the ransom payment approaches, Pierre Diamonds must assess the impact of the breach and formulate a response strategy to mitigate the damage and prevent future attacks.
Sources
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.