Ransomware Attack on ThrottleUp.io by RansomHub
Incident Date:
May 23, 2024
Overview
Title
Ransomware Attack on ThrottleUp.io by RansomHub
Victim
ThrottleUp.io
Attacker
Ransomhub
Location
First Reported
May 23, 2024
Ransomware Attack on ThrottleUp.io by RansomHub
Victim Overview
ThrottleUp.io, a technology company based in California, specializes in providing digital marketing services, business consulting, and software development. The company, founded by Bill Ferrante, focuses on using technology to simplify business problems and collaborates with clients to build solutions. ThrottleUp.io has less than 25 employees and generates revenue of less than $5 million.
Attack Details
On May 22, 2024, ThrottleUp.io fell victim to a ransomware attack by the RansomHub group. The attackers breached the company's network, exfiltrated confidential data, and disrupted their systems. RansomHub has demanded negotiations for decryption and data erasure, threatening to leak the stolen data if their demands are not met.
Ransomware Group Profile
RansomHub is a newly emerged ransomware group known for backing up their claims with data leaks. Operating as a Ransomware-as-a-Service (RaaS) group, RansomHub affiliates receive 90% of the ransom money, while the main group retains 10%. The group targets various countries, including the US, Brazil, Indonesia, and Vietnam, with a focus on healthcare-related institutions.
Attack Vulnerabilities
ThrottleUp.io's prominence in the digital marketing and technology sector may have made them a target for threat actors like RansomHub. The company's access to sensitive client data and their reliance on technology for business operations could have made them vulnerable to ransomware attacks. Additionally, the company's size and revenue may have made it challenging for them to invest in robust cybersecurity measures.
Sources:
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.