Login
iscover
Share this article on:
Powered by
MOMENTUM
MEDIA
Powered by MOMENTUMMEDIA
Ransomware group Akira says it has a trove of data, including information regarding Nobu’s co-owner, Robert De Niro.
The Akira ransomware gang has listed high-end restaurant chain Nobu as a victim on its darknet leak site, and it is threatening to upload a large amount of stolen data.
“Nobu, the world-renowned Japanese restaurant recognized for pioneering a new-style Japanese cuisine, started as a business partnership in 1994 between Chef Nobu Matsuhisa and his partners, Academy Award-winning actor Robert De Niro, producer Meir Teper, and restaurateur Drew Nieporent,” Akira said in its leak post.
“We will upload more than 71gb of corporate documents soon. Employee and owners information (passports, driver licenses, SSN and soon), detailed financials, confidential files, NDA, etc. You can find Robert De Niro’s SSN [Social Security Number] and you will know how much he earns from this business.”
There are dozens of Nobu restaurants around the world, including establishments in Melbourne, Perth, and Sydney, as well as several hotels bearing the brand. It was De Niro that suggested the idea of opening a restaurant in New York after he became a friend of Matsuhisa in 1980s Los Angeles.
As a rule, Akira does not share evidence of its hacks, nor its ransom demands, and typically frames its crimes as “an unscheduled forced audit of your network for vulnerabilities”.
“Do not rush to assess what is happening – we did it to you,” the gang said on its leak site.
“The best thing you can do is to follow our instructions to get back to your daily routine, by cooperating with us you will minimise the damage that might be done.
“Those who choose different path will be shamed here publicly. The functionality of this blog is extremely simple – enter the desired command in the input line and enjoy the juiciest information that corporations around the world wanted to stay confidential.”
Nobu is one of 16 victims claimed by Akira in November alone, and since the group first emerged in 2023, it has racked up a total victim count of 1,088, which have been listed publicly, at least.
Akira is thought to have links to the Conti ransomware group, which disbanded in the wake of Russia’s invasion of Ukraine. Several members of Conti opposed the move, leading to a split in the Russian-speaking group, with several new groups emerging in the wake of the breakup.
Akira is a ransomware-as-a-service group, selling access to its malware for a cut of any ransom payments.
Cyber Daily has reached out to Nobu for comment.
David Hollingworth has been writing about technology for over 20 years, and has worked for a range of print and online titles in his career. He is enjoying getting to grips with cyber security, especially when it lets him talk about Lego.
Be the first to hear the latest developments in the cyber industry.
