Powered by MOMENTUM MEDIA
cyber daily logo
Breaking news and updates daily. Subscribe to our Newsletter

Exclusive: RansomHub hits third-party ASIC compliance firm in alleged cyber attack

Notorious ransomware gang RansomHub has claimed an attack on a third-party firm that assists buisnesses with ASIC compliance.

user icon Daniel Croft
Wed, 20 Nov 2024
Exclusive: RansomHub hits ASIC compliance firm in alleged cyber attack
expand image

On 18 November, Waive was listed on the dark web by RansomHub, which claimed to have exfiltrated 30 gigabytes of data.

“Waive is a RegTech company that simplifies ASIC compliance for accountants. Its platform automates the Annual Review process, sending branded reminders to clients and providing features like automated data downloads and customizable client portals,” RansomHub said.

Within the listing are sample data, which include company statements, invoices, and other forms from clients, within which are names, addresses, places of birth, birth dates, bank transaction details, company names, company role(s), company share structure details, ACN and ABNs, ASIC agent numbers, phone numbers and more.

============
============

RansomHub set a five-day deadline for the publication of the data.

Waive is yet to publicly acknowledge the incident. Cyber Daily has reached out to the company for a comment on the incident but has not received a response.

Cyber Daily will provide an update to this story as it continues to develop.

Late last week, RansomHub claimed a cyber attack on the Mexican government, claiming to have exfiltrated data.

On 15 November, the threat group listed the official website of the Mexican government on its website, claiming to have stolen 313 gigabytes of data.

“gob.mx is the platform that promotes innovation in government, drives efficiency, and transforms processes to provide information, procedures and a platform for public participation,” the threat group said.

RansomHub said the exfiltrated data contains “contracts, insurance, financials, confidential files” and posted a sample of the allegedly stolen data.

Based on the listing, the threat group specifically targeted the Legal Counsel of the Federal Executive Branch (CJEF).

Within the samples, the names, emails, roles, “RFC”, and headshots of CJEF staff members are listed, as well as a number of scanned contracts from 2023, one of which is addressed to Mario Gavina Morales, the Mexican government’s director of information technology and communications.

Daniel Croft

Daniel Croft

Born in the heart of Western Sydney, Daniel Croft is a passionate journalist with an understanding for and experience writing in the technology space. Having studied at Macquarie University, he joined Momentum Media in 2022, writing across a number of publications including Australian Aviation, Cyber Security Connect and Defence Connect. Outside of writing, Daniel has a keen interest in music, and spends his time playing in bands around Sydney.

newsletter
cyber daily subscribe
Be the first to hear the latest developments in the cyber industry.