The Mallox ransomware group reportedly targeted India based digital marketing and web development company AddWeb Solution Private Limited on March 6, 2023.
The cybercriminals claim to have gained access to the company’s sensitive data and have threatened to publish it online on March 19, 2023, if the ransom demands are not met.
Ransomware attacks have become increasingly common in recent years, with cybercriminals targeting businesses of all sizes and industries.
Mallox is one such group responsible for numerous attacks in the past, including targeting healthcare organizations and financial institutions in Asia.
Mallox ransomware group targets AddWeb Solution
Like other ransomware groups, Mallox gains access to a company’s network and encrypts its files, holding the data hostage until the victim pays a ransom.
In this case, they targeted AddWeb Solution Private Limited and threatened to publish their stolen data online if their ransom demands are unmet.
The details of how the Mallox group gained access to AddWeb Solution’s systems are unclear. However, the group claimed to have accessed the data and shared links to verify their claim. The claim was shared on Breached Forum, where the TA claimed to be Mallox Ransomware Affiliate and demanded a ransom.
In this case, the Mallox group has stated that they will release the stolen data publicly on March 19, 2023, if their ransom demands are unmet. This is a tactic often used by ransomware groups to pressure their victims to pay the ransom.
The Cyber Express has reached out to AddWeb Solution and is yet to receive a statement regarding the attack. However, it is likely that they are working with cybersecurity experts to investigate the incident and determine the extent of the damage.
The attack on AddWeb Solution serves as a reminder of the importance of cybersecurity measures for businesses of all sizes. It is crucial for companies to implement strong security protocols, including regular employee training on how to recognize and avoid phishing attacks and other forms of social engineering.
In addition, companies should have backup systems in place to ensure they can quickly recover from a ransomware attack without paying the ransom. This involves regularly backing up important data to an off-site location not connected to the company’s network.
As the threat of cyber attacks continues to grow, it is essential for companies to remain vigilant and take proactive steps to protect their sensitive data and systems.
The consequences of a successful ransomware attack can be devastating financially and reputationally and have long-term impacts on the affected company.