Login
iscover
Share this article on:
Powered by
MOMENTUM
MEDIA
Powered by MOMENTUMMEDIA
Hacking group CoinbaseCartel lists the packaging giant as a victim, as Amcor says it has engaged “external forensic support”.
The CoinbaseCartel ransomware group has listed global packaging firm Amcor, which was founded in Melbourne in the 1800s but is now headquartered in Switzerland, as a victim on its darknet leak site.
The hackers made the claim on 25 November, though the leak post shared very little specific information regarding the volume of data exfiltrated, when it would be published, or what their ransom demand was.
Amcor has said it is aware of the threat actor’s claims.
“We are aware of these claims [relating to Amcor]. Amcor has well-established cyber security protocols, and we have initiated additional security checks with the assistance of external forensic support,” an Amcor spokesperson told Cyber Daily.
“We confirm that we remain in control of our IT infrastructure, and we are operating normally. Protecting our customers, partners and employees is our top priority, and we will continue to be diligent in the prevention and detection of cyber threats.”
CoinbaseCartel describes itself as focusing on “data acquisition through system access and strategic partnerships”.
“We focus exclusively on data exfiltration – our operations never involve system encryption or operational disruption,” it said.
The group is entirely financially motivated and does not hold any “ideological motivations”. Its targeting is “opportunistic based on accessible repositories and weak segmentation”. The group is also actively recruiting “partners”.
“We welcome strategic collaboration opportunities with organisations and individuals who possess authorised access to corporate systems or proprietary data, provided appropriate documentation of ownership can be verified,” CoinbaseCartel said on its leak site.
“Compensation structures are tailored to each partnership arrangement, with options including fixed-rate agreements or revenue-sharing models based on the nature and value of the collaboration.”
CoinbaseCartel was first observed on 15 September this year and has claimed a total of 41 victims since then. One of its early victims was a company linked to the Japanese IT firm NTT Data.
While the company was founded in Australia in 1896, it is currently headquartered in Zurich. It operates in 210 locations in more than 30 countries, and employs more than 75,000 people.
David Hollingworth has been writing about technology for over 20 years, and has worked for a range of print and online titles in his career. He is enjoying getting to grips with cyber security, especially when it lets him talk about Lego.
Be the first to hear the latest developments in the cyber industry.
