Nidec Corporation has become the target of an extortion attempt by the Everest ransomware group, threatening to release stolen data unless contacted within 24 hours. This follows a previous attack by the 8Base ransomware group in June.
The Everest ransomware group has listed Nidec Corporation as a victim on their leak site, demanding contact within 24 hours to avoid public disclosure of stolen data. This revelation was first spotted by the threat monitoring platform HackManac, which posted about it on X.
Founded in 1973, Nidec Corporation is a global leader in electric motor technology, with operations spanning automotive, industrial, and consumer electronics sectors. Headquartered in Kyoto, Japan, Nidec's extensive portfolio and innovative solutions have established it as a key player in the global market, with annual revenues exceeding $15 billion and a workforce of over 100,000 employees worldwide.
The Everest ransomware group's post features a stark warning, urging Nidec to follow their instructions or risk having all their data published. The post includes a blurred screenshot of what appears to be a directory of stolen files, underscoring the seriousness of the threat.
The group's modus operandi typically involves stealing sensitive data and threatening to release it publicly if their demands are not met, thereby increasing pressure on the victim to comply. It's not improbable that Everest bought the stolen data from 8Base after the latter failed to extort Nidec and now tries a more aggressive approach.
Nidec's previous disclosure
Nidec recently published an announcement about a ransomware attack that occurred in late May, affecting its subsidiary, Nidec Instruments Corporation. The attack, initially detected on May 26, resulted in the encryption of files across multiple servers.
Nidec Instruments immediately took steps to contain the breach, including isolating affected systems and changing passwords. Despite these measures, the investigation revealed the potential leak of personal data, including information on 318,151 business partners and other individuals.
Nidec's comprehensive announcement on July 25 detailed the extent of the breach and the steps taken to mitigate the impact. The corporation confirmed that no ransom was paid, and ongoing monitoring in collaboration with external security experts has so far prevented further damage.
It is unclear if Nidec's disclosure concerns the claimed 8Base attack, Everest, or even a third threat actor. CyberInsider has contacted the company to learn more and clarify some points, but we are still waiting for a response.
7777 Botnet Malware Expands, Now Also Targets ASUS Routers
Leave a Reply