Login
iscover
Share this article on:
Powered by
MOMENTUM
MEDIA
Powered by MOMENTUMMEDIA
Architectural firm Cara Stribley and Nina’s Jewellery allegedly hacked, stolen documents published to darkweb.
A relatively new ransomware group calling itself the Brotherhood has listed a pair of Australian companies on its darknet leak site, making for a total of three Aussie hacks claimed by the group since October.
Both companies were listed on November 15, the eleventh and thirteenth victims respectively, out of a total victim count of 15 since the gang first emerged in October.
The hackers claim to have stolen 4.8 gigabytes of data from Western Australia diamond specialist Nina’s Jewellery. The hackers posted several sample documents and screenshots, including details of stock holdings, cash takes, and what appears to be a list of website members.
The list includes phone numbers, names, and several email addresses.
On the same day, the Brotherhood also listed architectural and design firm Cara Stribley, claiming to have stolen a more substantial dataset.
“Contains: 2 Gb compressed Free Files + 138 Gb compressed Paid Files,” the Brotherhood in its leak post. The hackers clearly think there’s more value in one set of data compared to the other.
The Brotherhood may have a point. The sample data posted for this leak includes scans of government IDs: one passport and one driver’s licence (both out of date, admittedly), both of which belong to a senior employee. Other sample documents published by the hackers include project costs, a tax invoice, and a project summary.
Neither Nina’s Jewellery nor Cara Stribley responded to Cyber Daily’s request for comment, and full datasets allegedly stolen from the companies have already been published.
Little is known about the Brotherhood, and the group has little to say about itself on its darknet leak site. Like many similar groups, it makes use of the Tox messaging platform and Onion Mail, which operates on the Tor network, to communicate with its victims.
The group, however, did share details of one of its interactions with a victim, which it shared to, in essence, shame that organisation. The Brotherhood shared screenshots of its negotiations and a detailed record of how they broke down.
“We made attempts to reach an agreement with the victim and made numerous concessions, but the victim decided that financial gain was more important than the personal data of ordinary people who had entrusted them with their data for storage and processing,” the Brotherhood said in one leak post.
“In an attempt to reassure those affected, the victim states on their website that this data covers the period from 2005 to 2020.
“This is a lie! Please note the dates within the documents.”
The Brotherhood’s other Australian victim was Western Australia-based trade supplier, Kevmor Trade Supplies, which was listed by the group on October 10, making it one of the Brotherhood’s first victims.
David Hollingworth has been writing about technology for over 20 years, and has worked for a range of print and online titles in his career. He is enjoying getting to grips with cyber security, especially when it lets him talk about Lego.
Be the first to hear the latest developments in the cyber industry.
