The Nefilim ransomware operation has begun to publish unencrypted files stolen from a Dussmann Group subsidiary during a recent attack.
The Dussmann Group is the largest multi-service provider in Germany with subsidiaries focusing on facility management, corporate childcare, nursing and care for the elderly, and business systems solutions, including HVAC, electrical work, and elevators.
The company has confirmed to BleepingComputer that one of their subsidiaries, Dresdner Kühlanlagenbau GmbH (DKA), recently suffered a ransomware attack where data was stolen.
Nefilim publishes DKA's stolen data
During the DKA attack, the Nefilim operators claim to have stolen unencrypted files before deploying the ransomware.
These stolen files are then used as leverage against victims to coerce them to pay the ransom under the threat that the data will be publicly released on ransomware data leak sites.
In a post to their data leak site yesterday, the Nefilim operators have published two archives containing 14 GB worth of stolen files.
According to the file lists, these archives contain numerous documents, including Word documents, images, accounting documents, and AutoCAD drawings.
Full article on https://www.bleepingcomputer.com/news/security/business-giant-dussmann-groups-data-leaked-after-ransomware-attack/
#databreach #ransomware #dussmann #yokdata