The Mount Locker ransomware gang is threatening shipping firm ECU Worldwide to release stolen data in a ransomware attack.
The attackers accessed certain online platforms and the email system at ECU and had stolen about 2 terabytes of data.
The firm took its systems offline and restored back soon but the gang is still threatening to release data of ransom not paid.
Source: https://www.freightwaves.com/news/hackers-threaten-shipping-firm-ecu-worldwide-with-data-leak
TPRM report: https://scoringcyber.rankiteo.com/company/ecu-worldwide
"id": "ecu15136322",
"linkid": "ecu-worldwide",
"type": "Ransomware",
"date": "03/2021",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'industry': 'Transportation',
'name': 'ECU Worldwide',
'type': 'Shipping Firm'}],
'attack_vector': ['Online Platforms', 'Email System'],
'data_breach': {'data_exfiltration': 'Yes'},
'description': 'The Mount Locker ransomware gang accessed certain online '
'platforms and the email system at ECU Worldwide, stealing '
'about 2 terabytes of data. The firm took its systems offline '
'and restored them soon, but the gang is still threatening to '
'release data if the ransom is not paid.',
'impact': {'data_compromised': '2 terabytes',
'systems_affected': ['Online Platforms', 'Email System']},
'initial_access_broker': {'entry_point': ['Online Platforms', 'Email System']},
'motivation': 'Financial Gain',
'ransomware': {'data_exfiltration': 'Yes',
'ransomware_strain': 'Mount Locker'},
'response': {'containment_measures': 'Systems taken offline and restored'},
'threat_actor': 'Mount Locker Ransomware Gang',
'title': 'Mount Locker Ransomware Attack on ECU Worldwide',
'type': 'Ransomware Attack'}