The redONE Network Sdn Bhd., a telecom in Malaysia suffered a ransomware attack by the DESORDEN Group
DESORDEN launched a second attack hitting their insurer partnership redCARD and redCARE programs after redONE didn’t respond to DESORDEN’s demands.
They breached both source coding and redONE databases including personal data involving full name, NRIC (national identification number), address, phone, email, etc.
Source: https://www.databreaches.net/malaysian-telecom-redone-hit-by-desorden/
TPRM report: https://www.rankiteo.com/company/redonenetworksdnbhd
"id": "red2217101122",
"linkid": "redonenetworksdnbhd",
"type": "Ransomware",
"date": "6/2017",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'industry': 'Telecommunications',
'location': 'Malaysia',
'name': 'redONE Network Sdn Bhd',
'type': 'Telecom'},
{'industry': 'Insurance',
'location': 'Malaysia',
'name': 'redCARD and redCARE programs',
'type': 'Insurer Partnership'}],
'data_breach': {'data_exfiltration': True,
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal Data',
'Source Coding']},
'description': 'The redONE Network Sdn Bhd., a telecom in Malaysia suffered a '
'ransomware attack by the DESORDEN Group. DESORDEN launched a '
'second attack hitting their insurer partnership redCARD and '
'redCARE programs after redONE didn’t respond to DESORDEN’s '
'demands. They breached both source coding and redONE '
'databases including personal data involving full name, NRIC '
'(national identification number), address, phone, email, etc.',
'impact': {'data_compromised': ['Full name',
'NRIC (national identification number)',
'Address',
'Phone',
'Email'],
'systems_affected': ['Source coding', 'redONE databases']},
'motivation': ['Financial', 'Data Theft'],
'ransomware': {'data_exfiltration': True},
'threat_actor': 'DESORDEN Group',
'title': 'Ransomware Attack on redONE Network Sdn Bhd',
'type': 'Ransomware'}