February 16, 2024 at 06:50PM
ALPHV/Blackcat ransomware gang claims responsibility for network breaches of Prudential Financial and loanDepot. Stolen data from loanDepot to be sold, while Prudential’s is planned for release after failed negotiations. Rewards offered for information on ALPHV gang leaders. FBI links gang to over 60 breaches worldwide. ALPHV emerged in November 2021 and is believed to be a rebrand of DarkSide and BlackMatter ransomware operations.
From the meeting notes, it is clear that the ALPHV/Blackcat ransomware gang is responsible for the recent network breaches of Fortune 500 companies Prudential Financial and loanDepot. Prudential Financial had their network breached on February 4, with employee and contractor data stolen, while loanDepot suffered a ransomware attack on January 8, affecting at least 16.6 million individuals.
As a part of their response, loanDepot has committed to notifying those impacted by the data breach and providing them with free credit monitoring and identity protection services. Additionally, the U.S. State Department has announced rewards for tips leading to the identification or location of ALPHV gang leaders and individuals linked to or attempting to participate in ALPHV ransomware attacks.
The FBI has also linked the ALPHV gang to over 60 breaches worldwide and estimates that the group has received at least $300 million in ransom payments from over 1,000 victims until September 2023. Furthermore, ALPHV is believed to be a rebrand of the DarkSide and BlackMatter ransomware operations and gained notoriety after the Colonial Pipeline attack.
Given the severity and impact of these breaches, it is important for Prudential Financial and loanDepot to continue their investigations and strengthen their cybersecurity measures to prevent future attacks. Additionally, maintaining close communication with law enforcement agencies and implementing robust data protection protocols will be crucial in the ongoing response to these incidents.