Vertel Targeted by Space Bears Ransomware Attack
Overview of the Attack
Recently, Vertel, an Australian managed service provider based in Sydney, has confirmed that it is among the latest victims of the notorious Space Bears ransomware group. According to a post on the group’s leak website, dated June 18, hackers claim to have successfully stolen a variety of sensitive data. This includes SQL databases, personal information of clients, and vital financial documents.
Threats and Data Leakage
The hackers have issued a clear warning: they intend to publish the stolen data within days, with their leak site already recording over 1,300 views. Although details surrounding the amount of data taken remain undisclosed, the ransom group’s history suggests that they either publish the compromised information if the ransom is not paid or sell it to third parties interested in the data.
Vertel’s Response to the Cyber Incident
In the wake of the incident, Vertel has taken proactive measures to address the breach. A spokesperson confirmed that they commenced responding to the cyber security incident on June 13. To bolster their response efforts, Vertel has engaged external cybersecurity experts, including CyberCX and Atmos, while collaborating with relevant government authorities to investigate the extent of the compromise.
The focus of the independent cybersecurity teams involves understanding the nature and scope of the breach, as well as determining whether any data was accessed or taken.
Ensuring Continued Service
Despite the attack, Vertel assures its clients that their services remain unaffected. The company values transparency and is reaching out to customers to clarify any potential impact related to the incident. A spokesperson reiterated the organization’s commitment to the security and privacy of both clients and employees. They have also established a dedicated mailbox for client inquiries regarding the situation.
Background on Space Bears
Space Bears, a relatively new player in the ransomware arena, emerged in April 2024 and has already targeted 73 victims as of now. Their leak site offers guidance for organizations facing an attack, suggesting that businesses can avoid data leaks by communicating with the gang via their contact form.
Previous Victims and Trends
The most recent Australian victim prior to Vertel was 3P Corporation, a financial services aggregator, which appeared on the gang’s site in late May. While the firm claimed that no data was affected, reports indicated that significant quantities of client data, including tax file numbers and bank details, were compromised.
Vertel’s Range of Services
Vertel specializes in providing Information and Communications Technology (ICT) and telecommunications services to a diverse clientele across both public and private sectors. Their offerings include network solutions, cloud computing, Software as a Service (SaaS), and security services. Noteworthy clients include Airservices Australia, New South Wales government entities, and ACT’s water supplier, Icon Water.
Conclusion
As ransomware attacks become increasingly common, organizations like Vertel face mounting pressure to safeguard their data and maintain client trust. Continuous monitoring and robust cybersecurity measures are essential in mitigating the risks associated with these growing threats.
