Ransomware Attack on TrueNet Communications by CiphBit Group

TrueNet Communications Profile

TrueNet Communications, headquartered in Jacksonville, Florida, has been a significant entity in telecommunications since 1985. As a Fujitsu company since 2016, TrueNet offers a broad spectrum of services including wireless network services, outside plant engineering, and various professional services. Their technological advancements in drone-powered GIS photogrammetry, 3D modeling, and the use of innovative tools like lidar make them a standout in the industry.

Ransomware Group: CiphBit

CiphBit, a ransomware group active since April 2023, focuses on corporate targets rather than individual users. They employ double-extortion tactics, threatening to release exfiltrated data unless a ransom is paid. Their method involves encrypting files and appending a unique ID and contact email to the filenames, making it challenging to recover the data without their intervention.

Vulnerabilities and Impact

The company's extensive use of advanced technologies and the critical nature of their services make them a lucrative target for ransomware attacks like those conducted by CiphBit. The attack not only risks sensitive data related to telecommunications infrastructure but also undermines client trust and operational stability.

Sources

• PC Risk: CiphBit Ransomware Removal Guide
• Malwarebytes Blog: Ransomware Review October 2023
• Unit 42: Ransomware Leak Site Data Analysis
• Dragos: Industrial Ransomware Analysis Q4 2023
• Dragos: Industrial Ransomware Analysis Q3 2023