Toshiba subsidiary confirms ransomware attack, as reports suggest possible DarkSide involvement
European units of Japanese tech giant Toshiba are investigating a security incident in which scammers may have used a similar hacking tool to the malware used against IT systems at Colonial Pipeline.
The European subsidiaries of Toshiba Tec Group said Friday that a cyberattack from a criminal gang had prompted the company to disconnect network connections between Japan and Europe to stop the spread of the malware. In a statement, Toshiba Tec Group, a unit of the multinational conglomerate which makes printers and other technologies, said the firm had “not yet confirmed a fact that customer related information was leaked externally,” though it suggested a criminal gang is responsible.
Toshiba Tec Group did not name DarkSide, which is both a type of ransomware and an Eastern European criminal syndicate that develops and sells access to the code to other criminals. An unnamed company Toshiba Tec spokesperson told CNBC that DarkSide criminal group appeared to be responsible for the incident. The spokesperson said the company had not paid a ransom.
The French subsidiary of Toshiba Tec said in a tweet Friday that it was the target of a ransomware attack on May 4.
“With backups in place and prompt countermeasures, encrypted data was recovered and connections restored,” the French Toshiba Tec unit said.
Toshiba Tec did not immediately respond to a request for comment from CyberScoop.
“[T]he extent of impact has been limited to some regions in Europe and we have not yet confirmed a fact that customer related information was leaked externally,” Toshiba Tec Group’s statement continued. The company also acknowledged the possibility “that some information and data may have been leaked by the criminal gang.”
Toshiba Tec would be only the latest victim of the DarkSide criminal syndicate. Since emerging in last August , the malicious code has reportedly been used to steal millions of dollars in intrusion of companies in various sectors.
The FBI has blamed the DarkSide ransomware for the temporary shutdown of Colonial Pipeline, which says it provides some 45% of fuel to the East Coast, and President Joe Biden has vowed to retaliate against the criminals.
The post Toshiba subsidiary confirms ransomware attack, as reports suggest possible DarkSide involvement appeared first on CyberScoop .
Related News
Top News
-
![]()
CyberSec2024. Challenge panel “Cooperazione internazionale per vantaggi e rischi cyber dell’IA”Gli interventi di Alfredo Nunzi, Direttore, Dipartimento Affari Istituzionali e Legali, Europol, e Paul Tortora, Director, Naval Academy Center...
-
![]()
Hackaday Podcast Episode 266: A Writer’s Deck, Patching Your Battleship, and Fact-Checking the EclipseBefore Elliot Williams jumps on a train for Hackaday Europe, there was just enough time to meet up virtually with Tom Nardi to discuss their...
-
![]()
Support für .NET 7 endet am 14. MaiDer Support für .NET 7 läuft am 14. Mai 2024 aus. Ab diesem Datum wird Microsoft keine weiteren Wartungsaktualisierungen für .NET 7...
-
![]()
3D Printing a Cassette Is Good Retro FunThe cassette is one of the coolest music formats ever, in that you could chuck them about with abandon and they’d usually still work. [Chris...
-
![]()
MSHP Express #4 – Mateusz Wójcik i drifty z PorsheZapraszamy Was na czwarty odcinek MSHP Express, czyli zapowiedzi prelegentów na majowe Mega Sekurak Hacking Party. Prezentujemy Mateusza Wójcika,...
-
![]()
Malware che rubano i cookie, 54 miliardi di file nel mondo (456 milioni in Italia) finiscono sul dark webSecondo uno studio condotto da NordVpn, il nostro paese si attesta al 19esimo posto di questa poco invidiabile classifica (che in Europa vede la...