Today, the Akira ransomware gang claimed that it breached the network of Nissan Australia, the Australian division of Japanese car maker Nissan.
In a new entry added to the operation's date leak blog on December 22, Akira says that its operators allegedly stole around 100GB of documents from the automaker's systems.
The attackers have threatened to leak sensitive business and client data online, as ransom negotiations with Nissan failed after the company either refused to engage or pay the ransom.
Akira surfaced in March 2023 and drew attention after quickly amassing a large number of victims from various industry sectors.
In June 2023, Akira ransomware operators started deploying a Linux variant of their encryptor designed to target VMware ESXi virtual machines widely used in enterprise environments.
According to negotiations seen by BleepingComputer, the ransomware group is asking for ransom payments from $200,000 to millions of dollars, depending on the breached organization's size.
While another ransomware strain named Akira was released five years ago, in 2017, the two operations are unlikely to be related.
While the company has yet to attribute a cyberattack disclosed on December 5, it did add a new update to its website today confirming that attackers have breached some of its systems in Australia and New Zealand.
Nissan says it's still investigating the incident's impact and whether personal information has been accessed.
It's also working on restoring systems affected in the attack (a process that started on December 5, after the incident was disclosed.
After detecting the breach, Nissan notified the Australian and the New Zealand Cyber Security Centres and relevant privacy regulators and law enforcement bodies.
Nissan has yet to reply to a request for comment and additional information on the cyber incident from BleepingComputer.
HTC Global Services confirms cyberattack after data leaked online.
Nissan is investigating cyberattack and potential data breach.
Tipalti investigates claims of data stolen in ransomware attack.
Qilin ransomware claims attack on automotive giant Yanfeng.
MGM casino's ESXi servers allegedly encrypted in ransomware attack.
This Cyber News was published on www.bleepingcomputer.com. Publication date: Fri, 22 Dec 2023 16:41:10 +0000