iscover
Share this article on:
Powered by
MOMENTUM
MEDIA
Ransomware-as-a-service operator KillSec says it has stolen personal customer data from NSW-based home builder Vogue Homes.
The KillSec ransomware gang has listed the Prestons-based home builder Vogue Homes as a victim on its darknet leak site over the weekend, claiming to have stolen a significant amount of data.
The gang has not listed the exact volume of data exfiltrated, but it has shared what it has allegedly stolen.
“Data contains, but is not limited to: PII such as full names, contact numbers, email addresses, and postal addresses. Financial information, including price locks and contractual agreements, is also present,” a KillSec spokesperson said in an undated post.
“Customer data, detailing consultant information and project commitments, is included, along with private data like signed clauses, agreements, and ‘No Disparagement’ terms.
“Additionally, business details such as design specifications, job numbers, and project plans are provided.”
KillSec also shared several scanned documents as proof of hack, including a signed contractual agreement, a signed no-disparagement contract, and a detailed ground-floor floor plan of one of Vogue Homes’ house designs.
The gang has not listed a ransom amount, nor a deadline for the ransom to be paid, but it has sold previous data sets for €25,000.
Cyber Daily has reached out to Vogue Homes for comment but has yet to receive a response.
KillSec has been in operation since at least October 2023 and has claimed 93 victims in a range of industries since it was first observed. In June 2024, it announced it was moving to a ransomware-as-a-service (RaaS) business model.
The gang has a number of requirements to become an affiliate, including a “basic understanding of English or Russian” and that no attacks are to be made against critical infrastructure entities without permission – that said, about 20 per cent of KillSec’s victims are healthcare entities or hospitals.
Russian and Ukrainian targets are also expressly forbidden, suggesting the gang’s members come from that region.
As well as RaaS operations, the group advertises several other “services” on its darknet site, including penetration testing and open-source intelligence and data gathering.
According to its own description, KillSec is a “prominent hacktivist group operating in the cyber realm, operating since 2023”.
“With a focus on both disruption and digital activism, KillSec embodies the complexities of modern cyber warfare, blending elements of activism with the darker facets of hacking culture,” it said.
Vogue Homes has offices and display homes throughout NSW and offers a range of home-building services.
David Hollingworth has been writing about technology for over 20 years, and has worked for a range of print and online titles in his career. He is enjoying getting to grips with cyber security, especially when it lets him talk about Lego.
Be the first to hear the latest developments in the cyber industry.
