The website for popular fine Chinese cuisine “Mr. Chow” restaurant was hacked by Malwarebytes, hackers injected pseudo-Darkleech malware directly into the website’s page, triggering a secondary ransomware infection via the Neutrino Exploit Kit.
Unaware users were getting the CrypMIC ransomware as the payload, which at the time of publication wanted 1.2 BT (about $695).
Source: https://blog.malwarebytes.com/threat-analysis/2016/08/mr-chows-website-serves-up-ransomware/
TPRM report: https://scoringcyber.rankiteo.com/company/mr-chow-restaurant
"id": "mrc14627622",
"linkid": "mr-chow-restaurant",
"type": "Malware",
"date": "08/2016",
"severity": "50",
"impact": "2",
"explanation": "Attack limited on finance or reputation"
{'affected_entities': [{'industry': 'Hospitality',
'name': 'Mr. Chow',
'type': 'Restaurant'}],
'attack_vector': ['Malware injection', 'Exploit Kit'],
'description': 'The website for popular fine Chinese cuisine “Mr. Chow” '
'restaurant was hacked by Malwarebytes, hackers injected '
'pseudo-Darkleech malware directly into the website’s page, '
'triggering a secondary ransomware infection via the Neutrino '
'Exploit Kit. Unaware users were getting the CrypMIC '
'ransomware as the payload, which at the time of publication '
'wanted 1.2 BT (about $695).',
'impact': {'systems_affected': ['Website']},
'motivation': 'Financial gain',
'ransomware': {'ransom_demanded': '1.2 BT (about $695)',
'ransomware_strain': 'CrypMIC'},
'title': 'Mr. Chow Website Hack and Ransomware Infection',
'type': 'Ransomware'}