Babuk Ransomware Group Hits Metropolitan PD

The threat actors collectively known as the Babuk ransomware gang seem to have scored a new hit. The group says they have exfiltrated around 250 gigabytes of information from the Washington D.C. Metropolitan Police Department earlier this week.

The gang claims to have accessed and stolen internal reports, mugshots and other associated information for people who had been arrested.

The Babuk gang posted about the attack on its official website, which it uses to display proof of its activities and to scare victims into paying up. Some of the stolen folders of information were named "Gang conflict reports" and "BEEFS - CONFLICTS", according to a report by Vice.

The attack comes with a cheeky taunt, with Babuk group touting that it is able to find zero-day vulnerabilities before its victims can.

A day after the attack, an official spokesperson with the Metropolitan PD acknowledged it and stated that the FBI had been contacted and on the case.

Babuk group is after the usual - a random payment against the promise not to leak the stolen data. Even though the Babuk ransomware and the threat actors operating it only showed up on security researchers' radars in 2021, they are already making waves.

New But Vicious

This particular strain of ransomware has been used in five separate attacks, with one of them netting the cyber criminals $85 thousand in ransom payment.

The Babuk ransomware is operated and run using the common ransomware-as-a-service template. The group behind the malware licenses it out to budding cyber criminals who execute the attacks on their own, with Babuk group then taking a cut of the profits, in case of successful ransom payments.

Threatpost reported that this particular ransomware has been spotted targeting the electronics, healthcare and transportation sectors, across different countries all over the world.

Security researchers working with Israeli security company Cymulate pointed out that a large part of the problem stems from the slow process of patching systems. Threatpost quoted Cymulate's chief technical officer Avihai Ben-Yossef, who stated that even if things don't come down to zero-day vulnerabilities, just patching vulnerabilities and using "manual security testing" will mean that organizations will always lag behind threat actors.

State-run organizations and entities such as the Metropolitan PD don't seem to make for particularly difficult targets, looking at the numbers. Back in 2019, Threatpost reports that over 110 government bodies became victims of ransomware.

By Zaib
April 28, 2021
Computer Security
English
April 28, 2021
Computer Security

Popular Posts

As Fears of the Coronavirus Pandemic Spread, So Does...

4 years ago

Microsoft Warns State-Backed Threat Actors Are Using AI in...

4 days ago

Trojan Al11 Malware Detection & Removal - An Essential...

11 months ago

Pinaview is a Fully-Featured Adware App

10 months ago

"Your iCloud is Being Hacked" and "Your iPhone has Been...

7 months ago

What is Lucky Ransomware?

7 months ago

Related Posts

Ransomware

Removal of POLSAT Ransomware

The POLSAT Ransomware is a dangerous piece of malware, which is being spread on the Internet through fake downloads, malicious emails, misleading ads, and other shady content. It is very easy to encounter malware of... Read more

April 7, 2021
Ransomware

Removal of Ctpl Ransomware

The Ctpl Ransomware is a variation of the Dharma Ransomware, and this means that it is impossible to crack its encryption via free utilities. The malware uses a flawless file-locking mechanism, which is guaranteed to... Read more

April 6, 2021
News

Researchers Attribute Two Targeted Ransomware Attacks to the Lazarus Hacking Group

Hollywood would have you believe that hoodie-wearing teenage hackers can bring down entire corporate giants worth billions of dollars from the discomfort of their parents' basement. In the real world, however, things... Read more

July 29, 2020
English
Loading...

Cyclonis Backup Details & Terms

The Free Basic Cyclonis Backup plan gives you 2 GB of cloud storage space with full functionality! No credit card required. Need more storage space? Purchase a larger Cyclonis Backup plan today! To learn more about our policies and pricing, see Terms of Service, Privacy Policy, Discount Terms and Purchase Page. If you wish to uninstall the app, please visit the Uninstallation Instructions page.

Cyclonis Password Manager Details & Terms

FREE Trial: 30-Day One-Time Offer! No credit card required for Free Trial. Full functionality for the length of the Free Trial. (Full functionality after Free Trial requires subscription purchase.) To learn more about our policies and pricing, see EULA, Privacy Policy, Discount Terms and Purchase Page. If you wish to uninstall the app, please visit the Uninstallation Instructions page.

Home

Products

Cyclonis Backup Cyclonis Password Manager Cyclonis World Time

Support

Help Files FAQs Downloads Inquiries & Support

Company

About Us Contact Us Report Abuse

Legal (Post Merger)

EnigmaSoft Limited (fka Cyclonis Limited)

Cyclonis Backup's Terms of Service Cyclonis Password Manager's EULA Cyclonis World Time's Terms of Service Privacy Policy Cookie Policy Special Discount Offer Terms Additional Terms & Conditions SpyHunter EULA RegHunter EULA EnigmaSoft Privacy Policy & Cookie Policy ESG Privacy Policy & Cookie Policy EnigmaSoft Discount Offer Terms ESG Discount Offer Terms

© 2017-2024 Cyclonis Ltd. CYCLONIS is a trademark of EnigmaSoft Limited (Cyclonis was merged into EnigmaSoft Limited effective November 25, 2023.) All rights reserved.

Registered Office EnigmaSoft Limited: 1 Castle Street, 3rd Floor, Dublin 2 D02 XD82, Ireland.
EnigmaSoft Limited, Private Company Limited by shares, Company Registration Number 597114.

Windows is a trademark of Microsoft, registered in the U.S. and other countries.
Mac, iPhone, iPad and App Store are trademarks of Apple Inc., registered in the U.S. and other countries.
iOS is a registered trademark of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries.
Android and Google Play are trademarks of Google LLC.