Celebrity Personal Data Stolen in Ransomware Attack

Celebrity Personal Data Stolen in Ransomware Attack

Ransomware Attacks Celebrity Law Firm

Stars—they’re just like us. Unfortunately, that means they can get hit with ransomware too.

Law firm Grubman Shire Meiselas & Sacks has experienced a ransomware attack that involved a type of malware called REvil.

The attackers have allegedly stolen personal data from a laundry list of celebrity clients as well—possibly more than 750GB worth, including contracts, contact information, and “personal correspondence.”

Variety’s headline lists Lady Gaga, Madonna, and other notable celebrities that may have been affected:

Lady Gaga, Madonna, Nicki Minaj, Bruce Springsteen, Mary J. Blige, Ella Mai, Christina Aguilera, Mariah Carey, Cam Newton, Bette Midler, Jessica Simpson, Priyanka Chopra, Idina Menzel, HBO’s “Last Week Tonight With John Oliver,” and Run DMC. Facebook also is on the hackers’ hit list.

What is Sodinokibi Ransomware?

REVil, also known as Sodin or Sodinokibi is part of a new trend in ransomware attacks that lets attackers double down on their leverage.

Before scrambling files to grab your attention, the criminals quietly upload massive amounts of “trophy data” that can be used to blackmail anyone who reaches for their wallet too slowly.

This means financial extortion is no longer just a ransom for your files, but also a blackmail demand to stop attackers from leaking your data—or worse, your customers’ data.

The standard procedure seems to be leaking a sample to convince the victim that the data did get stolen. Following this the bargaining process involves leaking more data to persuade the victim into negotiating.

What Should You Do?

As we enter Patch Tuesday, there’s no better advice than patch early, and patch often.

Attackers who pull off ransomware attacks can afford to spend time looking for security holes they know about. By patching known bugs as soon as you can, you’re setting yourself up for success.

Syxsense allows you to manage and secure vulnerabilities exposed by open ports, disabled firewalls, ineffective user account policies, and security compliance violations from remote workers.

With security scanning and patch management in a single console, our vulnerability scanning feature not only shows you what’s wrong, but also deploys the solution. Gain visibility into OS and third-party vulnerabilities while increasing cyber resilience through automated patching and security scans.

Experience the Power of Syxsense

Syxsense has created innovative and intuitive technology that sees and knows everything. Manage and secure your environment with a simple and powerful solution.