LimeVPN stated that they have been hit by a cyber attack which shut down their system and has spoken with PrivacySharks saying that there is a Trojan lingering on the website.
The hacker asked for a $400 bitcoin payment to anyone willing to part with the sensitive information of thousands of users that include usernames, email addresses, passwords, and billing information.
The hacker claimed to possess all of the private keys belonging to each LimeVPN user, in which case he would have no trouble decrypting the user's traffic.
TPRM report: https://scoringcyber.rankiteo.com/company/vpnlime
"id": "lim9541223",
"linkid": "vpnlime",
"type": "Cyber Attack",
"date": "07/2021",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"{'affected_entities': [{'industry': 'VPN Services',
'name': 'LimeVPN',
'type': 'Company'}],
'attack_vector': 'Trojan',
'data_breach': {'personally_identifiable_information': ['usernames',
'email addresses'],
'type_of_data_compromised': ['usernames',
'email addresses',
'passwords',
'billing information',
'private keys']},
'description': 'LimeVPN experienced a cyber attack that shut down their '
'system. A Trojan was lingering on the website, and the hacker '
'demanded a $400 bitcoin payment for sensitive user '
'information.',
'impact': {'data_compromised': ['usernames',
'email addresses',
'passwords',
'billing information',
'private keys'],
'systems_affected': ['website']},
'motivation': 'Financial Gain',
'ransomware': {'ransom_demanded': '$400 bitcoin'},
'references': [{'source': 'PrivacySharks'}],
'title': 'LimeVPN Cyber Attack',
'type': 'Cyber Attack'}