![Fixxx](https://img-cc.com/data/avatars/m/50/50473.jpg?1724250746"){kind=avatar}
Fixxx
Moder
- Joined
- 20.08.24
- Messages
- 1,039
- Reaction score
- 4,023
- Points
- 113
A ransomware gang claims it has stolen nearly a terabyte of McDonald’s data in India and is counting down to a public leak. The notorious Russia-linked ransomware gang that last year froze European airports has expanded its list of victims. A notice posted on the dark web on January 20th indicates that the newest target of the Everest Group might be fast-food giant McDonald's. According to the gang, attackers exfiltrated roughly 861GB of internal data tied to McDonald’s local business in India.
Publicly naming a victim is a standard extortion tactic to pressure the victim into paying ransom. If negotiations fall apart, ransomware gangs often put the stolen data up for sale or publicly release it to cause reputational damage to their victims.
According to the gang’s own countdown, two days remain before it publishes a full file list of the allegedly stolen McDonald’s data, with a complete release scheduled nine days later if no deal is reached. If the deal is not reached, it is very likely that Everest will publish the data online. Last year, the gang claimed to have attacked Coca-Cola, later dumping a dataset with sensitive employee data. To back up its attack claims against McDonald’s, the Everest Group published a set of data samples. Those samples include what appear to be customer and employee personal data, contact details, and screenshots of internal financial reports showing accumulated profits over time.
“Personal data of your customers and internal documents were leaked into our storage. The leak of your internal company documents contains a huge variety of personal documents and information of clients,” claims the gang in the post.
Publicly naming a victim is a standard extortion tactic to pressure the victim into paying ransom. If negotiations fall apart, ransomware gangs often put the stolen data up for sale or publicly release it to cause reputational damage to their victims.
*post on the Darknet.
According to the gang’s own countdown, two days remain before it publishes a full file list of the allegedly stolen McDonald’s data, with a complete release scheduled nine days later if no deal is reached. If the deal is not reached, it is very likely that Everest will publish the data online. Last year, the gang claimed to have attacked Coca-Cola, later dumping a dataset with sensitive employee data. To back up its attack claims against McDonald’s, the Everest Group published a set of data samples. Those samples include what appear to be customer and employee personal data, contact details, and screenshots of internal financial reports showing accumulated profits over time.
*sample of allegedly stolen data.
![MaksBL](https://img-cc.com/data/avatars/m/84/84316.jpg?1769173403"){kind=avatar}