"Travel Company CWT Avoids Ransomware Derailment by Paying $4.5m Blackmail Demand"
According to reports, Minnesota-based business travel company CWT has been affected by a ransomware attack. The reports show that the adversaries claimed they had scrambled files on 30,000 computers and uploaded 2 terabytes of company data. Researchers believe those high numbers sound doubtful, but it was enough pressure that CWT paid the adversaries $4,500,000 in Bitcoin. The adversaries originally asked for $10,000,000. CWT received the cryptographic material to decrypt the scrambled files, and the adversaries "promised" that they did not have access to the stolen data anymore.
Submitted by Anonymous
on