Three more ransomware families have created sites that are being used to leak the stolen data of non-paying victims and further illustrates why all ransomware attacks must be considered data breaches.
Ever since Maze created their "news" site to publish stolen data of their victims who choose not to pay, other ransomware actors such as
Sodinokibi/REvil,
Nemty, and
DoppelPaymer have been swift to follow.
Over the past two days, BleepingComputer has learned of another three ransomware families who have now launched their data leak sites, which are listed below.
While we have been saying it for a long time, with the continued release of data leak sites, ransomware attacks
must be treated as data breaches now that the personal and private data of employees is being published online.
To make matters worse, other threat actors are taking the data exposed in these leaks and
selling it on hacker forums so it can be utilized in other attacks.
... ...
