A Chicago-based subsidiary of Nokia has disclosed a data breach after it was hit by a ransomware attack where Conti operators left their systems encrypted.
- SAC Wireless, a Nokia subsidiary, disclosed the breach after Conti operators were able to successfully breach its networks, encrypt systems and steal data.
- The Nokia subsidiary found that personal data of current and former employees were stolen during the attack.
A Chicago-based subsidiary of Nokia has disclosed a data breach after it was hit by a ransomware attack where Conti operators left their systems encrypted.
On June 16, the company discovered that its network was breached by Conti ransomware operators only after deploying their payloads and encrypting SAC Wireless systems.
Following the forensic investigation, the company concludes that the affected files contain the following categories of personal information, name, date of birth, contact details (such as home addresses, emails, and phone numbers), Social Security Numbers, government ID numbers (such as driver’s license, passport, or military ID), citizenship status, medical history, health insurance, license plate numbers, digital signatures, tax return information, and dependents or beneficiaries of employees.
SAC has put up multiple steps to prevent future breaches, comprising:
- changed firewall rules,
- disconnected VPN connections,
- activated conditional access geo-location policies to limit non-U.S. access,
- offered extra employee training,
- deployed additional network and endpoint monitoring tools,
- expanded multi-factor authentication,
and deployed additional threat-hunting and endpoint detection and response tools.
“SAC is aware of an incident, and we are currently investigating the matter," said the spokesperson. "As we continue to assess the incident, we are in contact with relevant parties to recommend that appropriate safeguards and precautions may be taken."
The Conti ransomware gang disclosed on their leak site that they stole over 250 GB of data and added that they would leak all the stolen files online if the Nokia subsidiary didn’t pay the ransom.
For the latest cyber threats and the latest hacking news please follow us on Facebook, Linkedin, and Twitter.
You may be interested in reading: How to Survive the COVID Time Cyber Security Threats?