unknown attacks Insurance Information Bureau of India
Incident Date:
May 23, 2023
Overview
Title
unknown attacks Insurance Information Bureau of India
Victim
Insurance Information Bureau of India
Attacker
Unknown
Location
First Reported
May 23, 2023
Ransomware Attack Hits Insurance Information Bureau of India
The Insurance Information Bureau of India (IIB) has suffered a ransomware attack, telling Cyberabad police that Russia-linked hackers are demanding $250,000 in Bitcoin to decrypt their systems. The independent insurance information repository staff first noticed the attack on April 4th when they struggled to log into their office network. While the organization did not publicly disclose the attack, an internal investigation revealed that the attack compromised nearly 30 data servers, encrypting all the data contained in them.
While the extent of the attack is still unclear, it's likely that cybercriminals stole confidential information. “As per the report, the encryption process was initiated by the threat actor on March 31 using an executable file - Project1.exe and the intrusion was noted through FortiGate firewall between March 30 and April 1. We found exfiltration of 16GB of data from firewall logs. Data staging or exfiltration indicators noted the attack was from a Russian IP address. The threat actor had left a ransomware note giving the contact details,” IBB reported to police officials.
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.