US-based Oil and Gas company Gyrodata was targeted by the REvil ransomware gang in January 2021.
The attackers accessed the Gyrodata’s IT systems and stole and encrypted the data.
The compromised information includes social security numbers, names, addresses passport details, W-2 tax forms and other personal data of its employees.
Source: https://ironscales.com/blog/ransomware-in-mining/
TPRM report: https://scoringcyber.rankiteo.com/company/gyrodata
"id": "gyr11122322",
"linkid": "gyrodata",
"type": "Ransomware",
"date": "01/2021",
"severity": "80",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'industry': 'Oil and Gas',
'location': 'US',
'name': 'Gyrodata',
'type': 'Company'}],
'data_breach': {'data_encryption': True,
'data_exfiltration': True,
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Social Security Numbers',
'Names',
'Addresses',
'Passport Details',
'W-2 Tax Forms',
'Other Personal Data']},
'date_detected': 'January 2021',
'description': 'US-based Oil and Gas company Gyrodata was targeted by the '
'REvil ransomware gang in January 2021. The attackers accessed '
'Gyrodata’s IT systems and stole and encrypted the data. The '
'compromised information includes social security numbers, '
'names, addresses, passport details, W-2 tax forms, and other '
'personal data of its employees.',
'impact': {'data_compromised': ['Social Security Numbers',
'Names',
'Addresses',
'Passport Details',
'W-2 Tax Forms',
'Other Personal Data']},
'motivation': 'Financial Gain',
'ransomware': {'data_encryption': True,
'data_exfiltration': True,
'ransomware_strain': 'REvil'},
'threat_actor': 'REvil',
'title': 'REvil Ransomware Attack on Gyrodata',
'type': 'Ransomware'}