In a recent cybersecurity news development, the LostTrust ransomware group recently targeted nearly 53 organizations with its ransomware attacks. Several cybersecurity researchers were found reporting the incidents caused by the group including the Ferguson Wellman cyber attack.
Besides this, LostTrust claimed cyber attacks on Morgan County School District, Tormax, and Brown and Streza among others. Morgan County School District is a k-12 school district based in Colorado, and Ferguson Wellman is a capital management investment advisory firm in Oregon.
This shows the targeting of US-based organizations by the LostTrust team which according to cybersecurity researchers seems similar to another ransomware group called Metaencryptor team.
Ferguson Wellman Cyber Attack
Not much has been found about the Ferguson Wellman cyber attack so far in terms of the data being stolen and the ransom deadline given to the target. The Cyber Express emailed the prominent investment, and wealth management organization for comments about the Ferguson Wellman cyber attack. We will update this report upon receiving the same.
The website of Ferguson Wellman was accessible when checked by The Cyber Express team.
On Twitter, several of the victims of LostTrust were reported by researchers who monitor the dark web, namely Ransomfeed, ThreatMon Ransomware Monitoring, and Ransomware Victims.
These are some of the names claimed by LostTrust hackers besides the Ferguson Wellman ransomware attack –
- Liberty Lines
- Gordon Law Firm
- Arazoza Brothers
- Center Township Trustee
- Immanuel Christian School
- Carnelutti Law Firm
- Theater League Inc
- Asia Vegetable
- Merced City School District
- Ambrosini Holding
- Johnson Boiler Works
- JSM Group
- Paradise Custom Kitchens
- Ananda Temple
- Garlick & Markison
- Gold Coin Restaurant
- Leiblein & Kollegen Steuerberatungsgesellschaft
- Contraband Control Specialists
- The WorkPlace
- GI Medical Services
- Hoosier Uplands Economic Development
- Oasys Technologies
- Central Trenching
- Marlboro Township Public School
- Key Construction
- Foundation Professionals of Florida
- Reload SPA
- Gateseven Media Group
- EnCom Polymers
- Jersey College
- Double V Construction
- Popovici Niu Stoica & Asociaii
- Professional Moving Company – Mackie Group
- Speciality Process Equipment
- SPEC Engineering
- Alexander City, Alabama
- Go-Ahead Group
- Mexican Government
- Central Trenching
- Cullum Services
- Colors Dress
- I&Y Senior Care
- Swann’s Furniture & Design
Oddly enough, the ransomware group named the Ferguson Wellman ransomware attack and the above names within the past 24 hours. This indicates the desperation of to create a name for themselves and extract money from possible cyber attacks.
LostTrust Teams v/s Metaencryptor Team
Cyber attack researcher Stefano Favarato posted screenshots from the dark web portal of both LostTrust and Metaencryptor ransomware groups to show how similar it looked.
Stefano tweeted, After 8Base vs CryptBB, now stepping into the ring are LostTrust vs Metaencryptor. Who copied who?”
A similar introduction on the dark web portal of both the cybercriminal groups indicates that they may have been one team that later split or had the same leader or operators.
Their dark web introduction reads – We are a group of young people who identify themselves as specialists in the field of network security with at least 15 years of experience.
They both claim that they have other mediums for communication while the blog on the dark web is for commercial purposes. Both the groups asserted not aligning with any political groups or intelligence agencies.
Both the introductions on the blog of LostTrust and Metaencryptor Team were posted on January 20, 2022.
Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. The Cyber Express assumes no liability for the accuracy or consequences of using this information.