Ransomware cyber

Magsaysay Maritime Corporation (MMC)

Nov 5, 2023 2 min read
Magsaysay Maritime Corporation (MMC)

In November 2023, Magsaysay Maritime Corporation (MMC) fell victim to a ransomware attack executed by the Monti ransomware group. The breach, discovered on November 14, 2023, resulted in the unauthorized acquisition of approximately one terabyte of sensitive data, including over 70,000 passports and other personally identifiable information (PII). The attack compromised critical internal systems, exposing vast amounts of employee and customer data. While forensic investigations are ongoing to determine the full scope, preliminary findings suggest a large-scale data exfiltration. MMC has initiated mitigation measures, such as password resets, system monitoring, and coordination with government cybersecurity agencies, while advising affected individuals to safeguard their personal information against potential misuse. The incident highlights severe risks to both operational continuity and the privacy of thousands of maritime professionals whose data may now be in the hands of cybercriminals.

Source: https://magsaysaycareers.com/Home/DataBreach

TPRM report: https://www.rankiteo.com/company/magsaysay-maritime-corporation

"id": "mag413092125",
"linkid": "magsaysay-maritime-corporation",
"type": "Ransomware",
"date": "11/2023",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"
{'affected_entities': [{'customers_affected': '70,000+ (passport holders and '
                                              'individuals with exposed '
                                              'personal data)',
                        'industry': 'Maritime',
                        'location': 'Philippines',
                        'name': 'Magsaysay Maritime Corporation (MMC)',
                        'type': 'Corporation'},
                       {'industry': 'Global Services (likely maritime-related)',
                        'location': 'Philippines',
                        'name': 'Magsaysay Global Services, Inc. (MGSI)',
                        'type': 'Corporation'}],
 'customer_advisories': 'Affected individuals advised to take precautions to '
                        'protect personal information',
 'data_breach': {'data_exfiltration': True,
                 'number_of_records_exposed': ['70,000+ (MMC)', None],
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High (passports, personal '
                                        'information, database dumps)',
                 'type_of_data_compromised': ['Passports',
                                              'Sensitive personal information '
                                              '(MMC)',
                                              'MMIS database dump (MGSI)']},
 'date_detected': ['2023-11-14', '2023-11-17'],
 'description': 'In November 2023, Magsaysay Maritime Corporation (MMC) and '
                'Magsaysay Global Services, Inc. (MGSI) in the Philippines '
                'potentially suffered data breaches due to ransomware attacks '
                'by the Monti ransomware group. MMC discovered the breach on '
                'November 14, 2023, which may have resulted in the '
                'unauthorized acquisition of approximately one terabyte of '
                'data, including over 70,000 passports and other sensitive '
                'personal information. MGSI experienced a similar breach on '
                'November 17, 2023, with a hacker claiming to have downloaded '
                'approximately one terabyte of data, including an MMIS '
                'database dump. Both organizations are conducting forensic '
                'investigations to confirm the extent of the breaches and have '
                'implemented several measures to mitigate potential harm, such '
                'as resetting passwords, monitoring systems, and coordinating '
                'with government agencies. Affected individuals are advised to '
                'take precautions to protect their personal information.',
 'impact': {'brand_reputation_impact': 'Potential reputational damage due to '
                                       'exposure of sensitive personal data',
            'data_compromised': ['Approximately 1 terabyte (MMC: 70,000+ '
                                 'passports and sensitive personal '
                                 'information)',
                                 'Approximately 1 terabyte (MGSI: MMIS '
                                 'database dump)'],
            'identity_theft_risk': 'High (due to exposure of passports and '
                                   'personal information)'},
 'investigation_status': 'Ongoing forensic investigations to confirm extent of '
                         'breaches',
 'ransomware': {'data_exfiltration': True, 'ransomware_strain': 'Monti'},
 'regulatory_compliance': {'regulatory_notifications': 'Coordination with '
                                                       'government agencies'},
 'response': {'communication_strategy': 'Advisories issued to affected '
                                        'individuals to protect personal '
                                        'information',
              'containment_measures': ['Password resets', 'System monitoring'],
              'enhanced_monitoring': True,
              'incident_response_plan_activated': True},
 'threat_actor': 'Monti ransomware group',
 'title': 'Ransomware Attacks on Magsaysay Maritime Corporation (MMC) and '
          'Magsaysay Global Services, Inc. (MGSI)',
 'type': 'Ransomware Attack / Data Breach'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.