24 August 2021

Nokia subsidiary hit by Conti ransomware


Nokia subsidiary hit by Conti ransomware

SAC Wireless, a US-based Nokia subsidiary has disclosed a data breach following a Conti ransomware attack.

The company said it detected the intrusion on June 16, 2021.

“On June 16, 2021, SAC Wireless became aware that certain aspects of our internal technology infrastructure may have been accessed by an unauthorized third-party as part of a ransomware attack. The threat actor, Conti, gained access to the SAC systems, uploaded files to its cloud storage, and then, on June 16, deployed ransomware to encrypt the files on SAC systems,” SAC Wireless said in a data breach notification letter.

The Nokia subsidiary said it is still trying to determine what information was affected, but it said it believes that the files impacted by the incident may include data related to current and former SAC Wireless employees, such as name, date of birth, contact information (home address, email, and phone), government ID numbers (driver’s license, passport, or military ID), social security number, citizenship status, work information (title, salary, and evaluations), medical history, health insurance policy information, license plate numbers, digital signatures, certificates of marriage or birth, tax return information, and dependent/beneficiary names.

In a message on their darknet leak site the Conti ransomware group claimed to have stolen over 250 GB of data from SAC Wireless and threatened to publish all the stolen files online if the company doesn't pay the ransom.


Back to the list

Latest Posts

Windows MSHTML bug used in ransomware attacks, Microsoft says

Windows MSHTML bug used in ransomware attacks, Microsoft says

According to the Windows maker, in the wild exploitation of CVE-2021-40444 began on August 18.
17 September 2021
State-backed hackers actively exploiting recently disclosed Zoho RCE bug

State-backed hackers actively exploiting recently disclosed Zoho RCE bug

The targeted entities include academic institutions, defense contractors, as well as critical infrastructure entities.
17 September 2021
Free REvil/Sodinokibi ransomware universal decryptor released

Free REvil/Sodinokibi ransomware universal decryptor released

The tool works for all REvil victims whose files were encrypted in attacks prior to July 13, 2021.
17 September 2021
Featured vulnerabilities
Multiple vulnerabilities in cflinuxfs3
Medium Patched | 17 Sep, 2021
Information disclosure in cflinuxfs3
Medium Patched | 17 Sep, 2021
Information disclosure in Git
Medium Patched | 17 Sep, 2021
Multiple vulnerabilities in GLPI
Medium Patched | 17 Sep, 2021
Multiple vulnerabilities in cflinuxfs3
Medium Patched | 17 Sep, 2021