The researcher who first revealed that Entrust had experienced a data breach, Dominic Alvieri, discovered on Thursday that Entrust had been added to the LockBit 3.0 Tor-based website.
Some experts claimed that a known ransomware gang was responsible for the Entrust breach when it was discovered in July, although no specific ransomware was disclosed.
On August 19, at 20:33 UTC, exactly 24 hours after they stated they had hacked Entrust, the black hat hackers have threatened to release all the stolen data.
Entrust acknowledged at the time that threat actors had acquired access to systems used for marketing, finance, and human resources, but claimed there was no proof that this had harmed the functionality or security of its goods and services.
Entrust is a Minneapolis-based business that offers security solutions for digital infrastructure, payments, and user and machine identities. The company’s services are used in 150 nations, including by some of the biggest businesses on the planet.
Entrust has been contacted by SecurityWeek for comment; if it responds, this post will be updated.
On Thursday, LockBit’s operators also reported taking documents from US engineering behemoth Wabtec after breaking into its servers. In late June, information of a ransomware outbreak at Wabtec initially surfaced.
News Summary:
- Threats from a ransomware group to a security company tasked with exposing stolen data before August 20, 2022
- Check all news and articles from the latest Security news updates.