After taking credit for a June hack of Entrust, the LockBit ransomware gang reportedly built a leak site. According to Bleeping Computer, the ransomware group is currently one of the most active, and data breaches over time are frequently used as a strategy to persuade companies to return to the bargaining table. The ransomware group has threatened to release all of the information it acquired from the titan of digital security by August 20.
More than 10,000 customers, including federal government departments, financial institutions, insurance providers, and IT giants like Microsoft and VMware, work with the Minneapolis-based cybersecurity vendor. Its solutions include identity and access management, payments, cloud security, data processing, and identity verification for the issuing of IDs and passports.
Last month, company representatives claimed that the attack mainly affected systems used for internal operations. An undisclosed cybersecurity company has been hired to assist with the investigation after law enforcement was told of the attack, the company stated at the time.
Ken Kadet, VP of public relations and communications, stated in a statement last month that Entrust’s products and services “are run in distinct, air-gapped environments from our internal systems and are completely operational.”
Two months after the event, LockBit makes the claim and threat to publish the stolen data, indicating that the discussions for a ransom have stagnated or have not yet met LockBit’s demands.
