One of Australia’s most prominent gambling and entertainment companies, Crown Resorts, admitted that it suffered a data breach incident after a threat group infiltrated their system through its GoAnywhere secure file-sharing server.
The Clop ransomware group claimed the attack on Crown Resorts. The group has recently transitioned from file encryption operations to exclusively running data extortion campaigns. Last month, this threat group announced it had stolen information from about 130 organisations using the GoAnywhere zero-day flaw in ten days.
Crown Resorts confirmed the Clop ransomware’s claims.
Crown Resorts disclosed that it had been a subject of a Clop ransomware attack, but the company explained that the data breach incident did not impact its customers.
The firm stated that the ransomware group contacted them and claimed they had illegally harvested a limited number of details from their files. Subsequently, Crown Resorts immediately investigated the authenticity of Clop’s claim to confirm the incident.
Investigations revealed that there was no compromised customer data during the attack; hence, the business operation of Crown Resorts remained unaffected.
The entertainment and gambling entity assured everyone that they would be in touch with relevant law enforcement entities to continue the investigation of the data breach incident. They will also disseminate updates if they find additional details about the attack.
Crown Resorts is the newest member in the victim lists of the GoAnywhere zero-day flaw. The company joins several organisations, including Hatch Bank, CHS, Rubrik, the City of Toronto, Saks Fifth Avenue, Hitachi Energy, and Procter & Gamble.
The Clop ransomware group extorts its victims by threatening to expose the stolen information from their networks. The group has yet to uncover any stolen datasets from their victims since it is either under negotiations or the deadline has yet to arrive.
On the other hand, Fortra, the vendor of GoAnywhere software, is now facing numerous lawsuits in the United States. These lawsuits resulted from failing to provide competent cybersecurity measures to secure classified data within its network.
