Schneider Electric has fallen victim to a ransomware gang. That one demands a ransom as usual, although somewhat unusually it must be paid in the form of baguettes.
Criminals have captured 40 GB of data from Schneider Electric. The company confirms that it is currently investigating an incident in which unauthorized persons gained access to a project management platform. Schneider reveals that the platform in question is running in an isolated environment.
The firm’s incident team is currently working on the case, it sounds necessary. Schneider Electric products and services would be completely safeguarded.
Jira
Ransomware gang Hellcat claims to have gained access to Schneider Electric’s Atlassian Jira environment. The criminals themselves describe their loot as 40 GB of data from users, projects, issues and plug-ins, among others. Hellcat specifically refers to sensitive customer data.
read also
Ransomware gang demands $125,000 in baguettes from Schneider Electric after data theft
The criminals are threatening to make the data public. In doing so, they are directly addressing brand-new CEO Olivier Blum, who has been at the helm of the company since Monday and presumably imagined his first week differently.
Baguettes
Schneider Electric is given the option to buy off the data leakage. Hellcat additionally promises upon payment of ransom to delete the stolen data. That approach is increasingly common among criminal gangs. There is no guarantee that the thieves will keep their word, but criminals often seem to keep their word enough that the financial model works for them.
Hellcat demands $125,000 in ransom, and somewhat conspicuously stipulates it prefers payment in baguettes. It is unclear whether traditional crypto currencies are also an option. Chances are Hellcat simply finds pleasure in making fun of France’s Schneider Electric, and plans to leak customer data anyway.