Dragos, a cybersecurity firm known for helping businesses mitigate cyberthreats, fended off a ransomware attack that threatened to leak data and extort money. The criminals accessed Dragos’ Sharepoint and contract management systems, claiming to have extracted 130GB of data. However, Dragos stated its layered security controls, including role-based access controls, prevented the group from launching ransomware or achieving lateral movement. The attempted extortion involved threatening calls to the executives’ family members, earning attention for its personal nature.
Security agencies warn of heightened threat to critical national infrastructure
The NCSC and CISA warn that pro-Russia hacktivists are focusing on vulnerable industrial control systems, posing a serious cybersecurity threat.