Hack Notice

Hack Notice: Sg: Vhive alerts consumers to cyberattack

Sg: Vhive alerts consumers to cyberattack

Source
https://www.databreaches.net/sg-vhive-alerts-consumers-to-cyberattack/
Description
Vhive, a popular furniture retail chain in Singapore, has posted a notice on their web site and Facebook page announcing a cyberattack that occurred on march 23. Based on information provided to DataBreaches.net by the threat actors, this appear to experience been a double extortion attack by ALTDOS threat actors that involves more than 300,000 customer records as wellspring as other types of documents including transactions records and defrayal records. According to Vhive, the onset did not affect NRIC numbers (national registration identity card numbers required for every Singapore resident over age 15). Nor did it reportedly affect any financial information or citation card data. The initial snipe of vhive.com.sg allegedly occurred on march 21, with the private network server breached on march 22. a timeline claimed by the terror actors indicates that Vhive was able to recover its site and files using backups on march 23, but allegedly “failed to resolve major vulnerabilities, allowing ALTDOS to uphold our attacks.” Those attacks allegedly continued on march 25, when ALTDOS downloaded source coding and files, and “encrypted all files on its server with a ransomware attack.” as proof of compromise, ALTDOS provided a number of mp4’s display them scrolling through directories and folders. They also provided some screencaps, including the one below which has been redacted by DataBreaches.net. It shows that there were more than 300,000 records in the “systemv” “customer” table. DataBreaches.net has redacted the customers’ names, addresses, and mobile phone numbers. The threat actors come not indicate what sort of ransomware was involved, but in a past attack, they had informed this site that they generally avoid ransomware and had simply used AES 256 encryption. According to the attackers, there was some dialogue with Vhive management on march 26, and when they asked for more time, ALTDOS gave the firm a 48-hour deadline. On mar 28, Vhive announced the breach on its web site and terminated negotiations with ALTDOS, who predictably responded by announcing that they will start dumping data within a few days. DataBreaches.net reached out to Vhive to ask for more details about the ransomware aspect and to inquire whether they wished to make any additional argument about the attack. This post will be updated if or when a response is received.    

About HackNotice and Sg: Vhive alerts consumers to cyberattack

HackNotice is a service that notices trends and patterns in publically available data so as to identify possible data breaches, leaks, hacks, and other data incidents on behalf of our clients. HackNotice monitors data streams related to breaches, leaks, and hacks and Sg: Vhive alerts consumers to cyberattack was reported by one of those streams. HackNotice may also have the breach date, hack date, the hacker responsible, the hacked industry, the hacked location, and any other parts of the hack, breach, or leak that HackNotice can report on for the consumers of our product.

If you are a user of Sg: Vhive alerts consumers to cyberattack their products, services, websites, or applications and you were a client of HackNotice, monitoring for Sg: Vhive alerts consumers to cyberattack you may have been alerted to this report about Sg: Vhive alerts consumers to cyberattack . HackNotice is a service that provides data, information, and monitoring that helps our clients recover from and remediate data breaches, hacks, and leaks of their personal information. HackNotice provides a service that helps our clients know what to do about a hack, breach, or leak of their information.

If Sg: Vhive alerts consumers to cyberattack had a breach of consumer data or a data leak, then there may be additional actions that our clients should take to protect their digital identity. Data breaches, hacks, and leaks often lead to and do identity theft, account read overs, ransomware, spyware, extortion, and malware. account takeovers are often caused by credential reuse, parole reuse, easily guessed passwords, and are facilitated by the sharing of billions of credentials and other customer information through data leaks, as the direct result of data breaches and hacks.

HackNotice monitors trends in publically available data that indicates tens of thousands of data breaches each year, along with billions of records from data leaks each year. On behalf of our clients, HackNotice workings to monitor for hacks that top to lower client security and digital identities that have been exposed and should be considered vulnerable to attack. HackNotice workings with clients to identify the extent that digital identities get been exposed and provides remediation suggestions for how to handgrip each type of exposure.

HackNotice monitors the hacker community, which is a network of individuals that apportion data breaches, hacks, leaks, malware, spyware, ransomware, and many other tools that are often used for financial fraud, account take overs, and further breaches and hacks. HackNotice monitors the hacker community specifically for breaches, hacks, and data leaks that wound consumers. HackNotice applies industry specific knowledge and advanced certificate practices to monitor for trends that indicate breaches, hacks, and exposed digital identities.

HackNotice also enables clients to apportion hack notices with their friend, family, and collogues to help increase awareness around alleged hacks, breaches, or data leaks. HackNotice workings to ply clients with sharable reports to help increase the surety of our clients personal network. The security of the people that our clients interact with directly impacts the level of surety of our clients. Increased exposure to accounts that have been taken over by hackers leads to further account take overs through phishing, malware, and other attach techniques.

If you found this plug observation to be helpful, then you may be interested in reading some additional cut notices such as:

ganization are a major cause of data breaches. Estimates of breaches caused by accidental human factties companies an average of $12.8 million each year in lost business and damaged equipment accordinater released their renegotiation to Yahoo agreeing to lower the final price from $4.8 to $4.48 bill

Austin ISD warns of possible data breach

Defacement http://ncgld.gov.sd/xixi.php

Alex Salmond's Alba party website leaks data in IDOR foul-up - Graham Cluley Security News