Home Internet Security DC Police confirms cyberattack after ransomware gang leaks data

DC Police confirms cyberattack after ransomware gang leaks data


DC Police

The Metropolitan Police Division has confirmed that they suffered a cyberattack after the Babuk ransomware gang leaked screenshots of stolen information.

The Metropolitan Police Division, often known as the DC Police or MPD, is the first regulation enforcement company for Washington, DC, the US capital.

In a press release to BleepingComputer, the DC Police said that they’re conscious of a breached server and that the FBI is investigating the matter.

“We’re conscious of unauthorized entry on our server. Whereas we decide the complete impression and proceed to evaluation exercise, we’ve got engaged the FBI to totally examine this matter.” – Metropolitan Police Division.

This assertion comes after the Babuk Locker gang stated they’d compromised the DC Police’s networks and stolen 250 GB of unencrypted recordsdata.

“We won’t remark this time: Even such a company has enormous safety gaps, we advise them to get in contact as quickly as potential and pay us, in any other case we are going to publish this information,” said the Babuk ransomware gang on their information leak web site.

Babuk data leak page for the Metropolitan Police Department
Babuk information leak web page for the Metropolitan Police Division

As a part of this leak, the ransomware gang posted screenshots of varied folders they allegedly stole through the assault. One of many screenshots contains the timestamp for all of the folders as 4/19/2021, which is probably going when the menace actors stole the info.

Screenshot of folders containing allegedly stolen files
Screenshot of folders containing allegedly stolen recordsdata
Redacted by BleepingComputer

The Babuk gang particularly identified one of many recordsdata that seem like associated to arrests after the January sixth protest that stormed the Capital Constructing.

We have been the primary to report on the Babuk Locker ransomware in January after they started working and leaking sufferer’s information on hacker boards.

Since then, they’ve slowly elevated their exercise as they recruit additional hackers to work with them and compromise extra enterprise networks.

They just lately made the information when cybersecurity firm Emsisoft found that their decryptor contained extreme bugs that might destroy recordsdata whereas they have been being decrypted.

Source link