Geo-Poli-Cyber News

Geo-Poli-Cyber Hacked – Hilton, PepsiCo, Dupont, Walmart, DHL, Clorox & Lexmark’s Supplier of Regulatory Compliance, Renewable Energy & Consulting Services. | Schneider Electric Suffers 1.5TB data breach in a Cactus Ransomware Attack.

The Cactus ransomware gang has claimed stealing 1.5TB of data from Schneider Electric after breaching the company’s network last month.

25MB of allegedly stolen were also leaked on the operation’s dark web leak site today as proof of the threat actor’s claims, together with snapshots showing several American citizens’ passports and non-disclosure agreement document scans.

The ransomware group gained access to the energy management and automation giant’s Sustainability Business division on January 17th.

The gang is now extorting the company, threatening to leak all the allegedly stolen data if a ransom demand is not paid.

It is currently unknown what specific data was stolen, but Schneider Electric’s Sustainability Business division provides renewable energy and regulatory compliance consulting services to many high-profile companies worldwide, including Allegiant Travel Company, Clorox, DHL, DuPont, Hilton, Lexmark, PepsiCo, and Walmart.

Given this, the data stolen from its compromised systems could include sensitive information about customers’ industrial control and automation systems and information about environmental and energy regulations compliance which can be leveraged to compromise not only the companies affected but the countries and economies they are incorprated in.

Schneider Electric is a French energy and automation manufacturing multinational that employs over 150,000 people worldwide.

The company reported a $28.5 billion revenue in 2023 and previously fell victim to Clop ransomware’s MOVEit data theft attacks that impacted more than 2,700 other organizations.

Schneider Electric entry on Cactus leak site

 

What is Cactus ransomware.

is a relatively new operation that surfaced in March 2023 with double-extortion attacks.

Its operators breach corporate networks using purchased credentials, partnerships with various malware distributors, phishing attacks, or exploiting security vulnerabilities.

After gaining access to a target’s network, they move laterally through the compromised network while stealing sensitive data to use as leverage in ransom negotiations.

Since its emergence, the Cactus ransomware has added over 100 companies to its data leak site. The threat actors have already leaked some data online or are threatening to do so while still negotiating a ransom.

The post Geo-Poli-Cyber Hacked – Hilton, PepsiCo, Dupont, Walmart, DHL, Clorox & Lexmark’s Supplier of Regulatory Compliance, Renewable Energy & Consulting Services. | Schneider Electric Suffers 1.5TB data breach in a Cactus Ransomware Attack. appeared first on Survivability News | Powered By MLi Group.

You might also like More from author
What Are
Geo-Poli-
Cyber™
Warfare
& Risks?

What Are Geo-Poli-Cyber™ (GPCyber™) Warfare, Risks & Threats?

Definition
Geo-Poli-Cyber™ warfare has spread worldwide in recent years and is impacting everyone without exception through cyber attacks that are political, ideological, terrorist, extremist, ‘religious’ and/or geo-politically motivated. They are perpetrated by political and extremist groups, national security agencies and/or their proxies, and lone wolves.

Cyber security strategies and solutions that are followed like gospel have failed and will continue to fail to mitigate, defend and protect national sovereignty and corporate security from Geo-Poli-Cyber™ attacks on unprecedented scales and with devastating political, social, and financial consequences.
More Sinister and Destructive Than Financial Motivations

Geo-Poli-Cyber™ attacks are significantly different from financially motivated cyber-attacks in damage, scale, magnitude and require different and upscaled risk mitigation strategies and solutions.

Why Do Existing Strategies & Solution keep failing?

MLi Group chairman Khaled Fattal created the terms Poli-Cyber™ and Geo-Poli-Cyber™ (GPCyber™) back in 2012 because of seismic game-changing events he had observed years before. Fattal believed that these events and trends will cause …

Click to read more

Survivability News Latest