No matter what advanced security mechanisms your organization has in place, everything falls if basic security measures fail. In the KNP attack, Akira targeted the company's internet-facing systems, found an employee credential without multi-factor authentication, and guessed the password. Once inside, they deployed their ransomware payload across the company's entire digital infrastructure. But the hackers didn't stop at encrypting critical business data. They also destroyed KNP's backups and disaster recovery systems, ensuring that the company had no path to recovery without paying their ransom.
The company said in a post on Monday that it was aware of a security incident involving the theft of Plex customer account information, including user names, email addresses, scrambled passwords, and unspecified authentication data. Plex said while the passwords were scrambled in a way that made them unreadable to humans, it's unclear if the passwords can be deciphered or if the stolen authentication data could be used to gain access to customer accounts.