The latest move in ransomware extortion: reporting your victim to the SEC.
As Recorded Future News explains, a financial software company called MeridianLink has confirmed “a cybersecurity incident,” which isn’t uncommon.
What is unusual is the AlphV/BlackCat ransomware gang allegedly trying to pressure the company by filing a report (included below) with the Securities and Exchange Commission (SEC) accusing MeridianLink of failing to disclose a breach. However, the new rules requiring disclosure have some loopholes, and, they don’t take effect until next month.
