The Medusa ransomware group has listed Canada’s Moneris Options Corp., a partnership of two of the nation’s greatest banks which gives the purpose of gross sales IT community and terminals utilized by retailers throughout the nation.
This morning Brett Callow, a Canadian-based menace researcher for Emsisoft, tweeted the news on the X platform. A display shot of the gangs’ weblog says it’s demanding $6 million for the deletion of stolen information, or the knowledge can be publicly launched in eight days.
In a press release responding to a question from IT World Canada, Darren Leroux, Moneris’ director of communications, stated that “we can affirm that an try was made by an exterior occasion and our cybersecurity crew prevented entry to any essential information. Following the try, our crew did a full audit and evaluation of the incident, reviewed all data, and concluded none of our digital loss prevention insurance policies have been triggered.
“Cybersecurity is a high Moneris precedence, and we take the safety of our prospects and their information critically. We make use of a devoted crew to handle and reply to cyber dangers and their swift actions ensured Moneris and its prospects weren’t impacted.”
Moneris was requested to make clear its assertion that no “essential” information was accessed by the attacker. The gang has posted what it says are screenshots of stolen Moneris information.
Requested in regards to the Moneris assertion, Callow stated it’s doable Medusa acquired nothing, so itemizing Moneris is an try and “shake down” the corporate. “This wouldn’t be the primary time Medusa has listed a sufferer and by no means produced proof of the assault. That has occurred earlier than. They might merely hope that by itemizing a company they might pay up, as a result of it’s not all the time straightforward to conclusively rule out the likelihood that information was taken. Generally [threat] teams will attempt to leverage that to their benefit by claiming to have information they don’t [have].”
Moneris is a three way partnership between the Royal Financial institution and the Financial institution of Montreal. It says greater than 325,000 retailers, tradespeople, and companies are linked to the Moneris community for wired or wi-fi processing of credit score and debit card or business-to-business transactions.
The corporate additionally provides a full e-commerce answer for retailers based mostly on the Wix platform. That permits retailers to supply prospects the flexibility to pay utilizing a digital pockets or eGift playing cards.
Among the many Medusa gang’s newest victims are the Philippine Well being Insurance coverage Company, which in September was requested to pay US$300,000 for decryption keys to unscramble compromised information and the deletion of stolen information; the Minneapolis Public Faculty System, which in February was requested to pay US$1,000,000 to delete information the gang stole. In Might that information — together with college students’ psychological reviews — was printed.
Earlier this month, Medusa additionally claimed to have attacked the Canadian Psychological Affiliation and is demanding $200,000 for the deletion of stolen information. IT World Canada requested the CPA for touch upon Nov. 5, however acquired no response.
The Medusa gang is a separate group from these working the MedusaLocker ransomware operation.