iscover
Share this article on:
Powered by
MOMENTUM
MEDIA
Threat actors have claimed a ransomware attack on Australian private educational support firm Thanks For the Help (TFTH).
TFTH is an educational support platform that assists university and college students with assessments, helps find student accommodation and more.
It is also worth noting that the company’s website has been flagged by the Australian government’s Tertiary Education Quality and Standards Agency for providing essay writing services.
“Access to this website has been blocked because it has been found to facilitate a contravention of a section of the provisions of the Tertiary Education Quality and Standards Agency Act 2011 (TEQSA Act) regulating academic cheating services,” said the agency.
Now, adding to the company’s woes, the KillSec ransomware gang has claimed a ransomware attack on TFTH.
The company provided very little information as to the nature of the incident, but it is alleging that it will leak exfiltrated data after eight days at the time of writing.
“1 per cent of data is [already published],” said KillSec.
If the countdown times out, KillSec said it will publish “all data”. It has not yet publicly disclosed the ransom cost.
It is currently unclear what data, if any, has actually been exfiltrated. TFTH is yet to publish a statement.
Cyber Daily has reached out to TFTH for commentary on the incident.
In recent weeks, the KillSec ransomware gang has claimed attacks on a number of Australian businesses.
Just last week, the gang claimed an attack on Clubfit Software, a gym management software firm.
Like the TFTH listing, KillSec said it had already published 1 per cent of the data and did not mention a ransom amount.
However, it claimed to have stolen nearly 200 gigabytes of data.
The gang also shared several files as evidence of their alleged activity, including several gym membership agreements with customer names, addresses, phone numbers, emails, and emergency contact numbers. Many of the documents also appear to include signatures.
Since the initial listing, KillSec has uploaded a full list of Clubfit’s clients, as well as another dump of 1 per cent of the data. The ransomware gang has also begun to contact Clubfit’s clients.
“Message to the company: We are beginning to contact your clients and the sub-clients of your clients regarding the data leak, and we will publish everything on our blog,” the most recent update said.
The recently published full client list has 694 gyms, leisure centres, boxing gyms, and other fitness centres, including Anytime Fitness and several other well-known fitness franchises, alongside smaller operations.
Be the first to hear the latest developments in the cyber industry.
