"Although KPMG operates worldwide, the Nova hacker group claims to have compromised only the Dutch branch. Such claims are usually used to put pressure on organizations that may already be aware of the attack. It is still unclear what specific data the criminals claim to have. More importantly, we do not know whether the claim is true. Nevertheless, Nova has announced that the data will be published online in 10 days if KPMG does not pay."
"That incident ultimately affected more than 850,000 people, mainly women from the cervical cancer screening program. This was followed in September by an attack on FysioRoadmap, in which data from more than 20,000 patients was stolen. Nova's modus operandi is notorious among cybercriminals, namely double extortion. This involves both encrypting systems and threatening to publish stolen data online or sell it to other criminals. This tactic has proven effective on multiple occasions."
KPMG Netherlands has been claimed as a victim by ransomware group Nova, which posted the claim on a leak site and threatened to publish data in 10 days unless paid. Details about the alleged attack, including timing, extent, and specific data compromised, remain unknown. KPMG has not officially confirmed or responded. The claim was discovered Friday by ransomware.live. Nova previously targeted Clinical Diagnostics, affecting over 850,000 people, and FysioRoadmap, stealing over 20,000 patient records. Nova uses double extortion—encrypting systems and threatening to publish or sell stolen data—to pressure victims to pay ransoms.
Read at Techzine Global
Unable to calculate read time
Collection
[
|
...
]