iscover
Share this article on:
Powered by
MOMENTUM
MEDIA
The RansomHub ransomware gang has claimed an attack on the Mexican government, claiming to have exfiltrated data.
On 15 November, the threat group listed the official website of the Mexican government on its website, claiming to have stolen 313 gigabytes of data.
“gob.mx is the platform that promotes innovation in government, drives efficiency, and transforms processes to provide information, procedures and a platform for public participation,” the threat group said.
🚨 ALERTA MÉXICO 🚨
El grupo #RANSOMHUB ha añadido como nueva víctima al dominio https://t.co/Wl9MrD3U2S, reportando una filtración de 313 GB de información.@ivillasenor @NicoTechTips
🔒 #Ransomware | #Ciberseguridad | #Infosec | #Gobierno | #DataLeak pic.twitter.com/zP0Ep91APA— TIAL (@mbec03) November 15, 2024========================
RansomHub said that the exfiltrated data contains “contracts, insurance, financials, confidential files” and posted a sample of the allegedly stolen data.
Based on the listing, the threat group specifically targeted the Legal Counsel of the Federal Executive Branch (CJEF).
Within the samples, the names, emails, roles, “RFC”, and headshots of CJEF staff members are listed, as well as a number of scanned contracts from 2023, one of which is addressed to Mario Gavina Morales, the Mexican government’s director of information technology and communications.
The government of Mexico has yet to issue a public statement on the incident; however, the website seems to be operating normally.
RansomHub has set a deadline of 10 days for ransom to be paid before the data is released.
Be the first to hear the latest developments in the cyber industry.
