The ease with which Babuk breached Orange’s systems raises questions about the company’s threat detection capabilities and the security of its infrastructure. The Babuk group confirmed that they exploited a zero-day vulnerability in Orange’s systems to gain initial access to the company’s network. The Babuk group’s attack on Orange underscores the challenges faced by large companies in securing their infrastructure against sophisticated threats. Cyber Security News is a Dedicated News Platform For Cyber News, Cyber Attack News, Hacking News & Vulnerability Analysis. Babuk, a notorious ransomware group, has claimed responsibility for a significant cyberattack on Orange, one of the world’s leading telecommunications companies. Following the initial breach, Babuk planned a second attack aimed at encrypting Orange’s entire infrastructure. The use of zero-day vulnerabilities, combined with the prolonged undetected presence in Orange’s systems, shows the advanced capabilities of modern ransomware groups. SuspectFile analysts noted that the incident highlights the evolving nature of ransomware attacks and the underground market for stolen data. Babuk’s decision to sell stolen data rather than engage directly with Orange for a ransom reflects the multifaceted nature of modern cybercrime. With years of experience under his belt in Cyber Security, he is covering Cyber Security News, technology and other news. Babuk did not reveal why they specifically chose this division, but it is believed that its significant presence in the European telecommunications market made it an attractive target. The sale of stolen data to third parties, who then attempt to ransom it back to the victim or publish it on platforms like BreachForums, illustrates this shift. According to Babuk, the stolen data was later sold to a third party for $10,000. Tushar is a Cyber security content editor with a passion for creating captivating and informative content. Such vulnerabilities are highly prized by cybercriminals as they enable them to launch attacks without being detected by traditional security measures. The attack targeted Orange Romania, a strategic hub for the company’s operations in Europe. This attack, which was meticulously planned over a long period, resulted in the exfiltration of sensitive data. Babuk’s actions demonstrate how ransomware groups are diversifying their tactics beyond traditional ransom demands.
This Cyber News was published on cybersecuritynews.com. Publication date: Thu, 20 Mar 2025 09:30:06 +0000