Cyber attackers put out details of some stolen NHAI files, probe on, Auto News, ET Auto

NEW DELHI: Times soon after the Maze ransomware attack on NHAI’s mail server, information of some of the stolen files have surfaced on the net. The operators of the ransomware have claimed to have leaked just 5{7e488363c11ee5ef50445c8c4fa770b6e6e4f99e57faea264a05ac52abb3ffe0} of the whole quantity of data they have copied and encrypted.
The attackers have leaked two data sets relating to a former NHAI chairman and a former senior formal, claiming that the folder relating to ex-NHAI main has facts such as information of his passport, lender assertion, journey and investments.
Similarly, the zip (compressed) file of the other former officer has his personal information, monetary records of firms and tax records.
Sources said the operators have also shared a template of how to acquire the important to decrypt the file that they have encrypted.
Responding to queries about the data loss and whether or not they have bought any indication from attackers, the NHAI said, “The NHAI has the best protection procedure, Community Obtain Handle, Firewall, IPS and Software package Described Community and so on. As NHAI is going electronic, it is advancing its protection posture further more by adopting the world’s best cyber protection measures at all concentrations. It is also adopting far more proactive measures to strengthening the stop users’ IT competencies by adopting device-based mostly person awareness instruction exactly where users’ IT ability enhancement can be monitored and measured.”
Sources said experts from the national nodal agency for responding to personal computer protection incidents, CERT-In, frequented NHAI office and are investigating the make a difference. “They have the abilities on these kinds of issues. Most of our data and facts is in public domain,” an formal said.
TOI experienced reported previously that while NHAI experienced back-up data, which it uploaded on the mail server soon after the cyber attack, there was some loss of data.
In the meantime, the webpage of “mazedecrypt” claims, “If you are ready for free alternatives to occur, we have to disappoint you…We comprehend that the client are unable to always shell out the payment. We have bargains and selling price can be negotiated.”
Also Browse: NHAI suffered loss of all data in final week’s ransomware attack