Hackers Reportedly Steal 189GB Of Epic Games Data | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #ransomware

Ransomware group Mogilevich claims that it hacked into Fortnite developer Epic Games last night and stole 189GB of data comprised of “email, passwords, full names, payment information, source code,” and more.

As reported by Cyber Daily, a Mogilevich spokesperson says that the data is currently up for sale and that it has given Epic Games the deadline of March 4 to pay. However, it has not asked for a specific amount, posted proof of the hacked data, or said what will happen if Epic Games does not agree.

We have quietly carried out an attack to Epic Games’ servers. If you are an employee of the company or someone who would like to buy the data, click on me [referencing a hyperlink on the site that takes you to the group’s contact page].

Mogilevich is a newcomer to the ransomware scene. Its first attack was carried out as recently as February 20, only eight days ago. However, in just over a week, it has accumulated four victims including Epic Games. The first was Nissan subsidiary Infiniti USA, followed by Bazaarvoice and Ireland’s Department of Foreign Affairs.

“We are Mogilevich,” the group said, announcing its formation on February 18. “Our agenda is to severely punish companies and corporations that fail to keep their infrastructure under control and security. Our operators are skilled pen-testers in contrast to other groups like ours in which they lie about their purpose, we agree from the beginning that we are doing it for economic interest.”

Similar data was alleged to have been taken from the other three victims. In the case of Infiniti USA, Mogilevich claims that it acquired vehicle identification numbers, first and last names, addresses, ZIP codes, mobile numbers, emails, and passwords. It also claimed that it sold the data in a Telegram chat three days ago on February 25, but use of the app appears to have ceased.

The name ‘Mogilevich’ is likely taken from Semion Mogilevich, a Ukrainian-born Russian crime boss who was added to the FBI’s Ten Most Wanted list in 2009 and removed in 2015.

A similar case took place at the end of last year when ransomware group Rhysida hacked into Spider-Man and Ratchet & Clank developer Insomniac Games, stealing a historic 1.6 terabytes of data, including personal employee information. Similarly, it threatened to leak the data if Sony did not pay, but it had a number in mind, asking for $2 million in Bitcoin. Ultimately, Sony refused, and the data was shared online.

However, Mogilevich has yet to prove that it has stolen the data, so this could be an elaborate scam given how new this group is and considering the fact that it has not asked for a specific amount, unlike Rhysida.



Click Here For The Original Source.


National Cyber Security