فارسی افغانستان العربیة English Türkçe
World
2021-October-28  13:35

Cyber Group Hacks NRA

TEHRAN (FNA)- A Russian cyber group posted what appear to be National Rifle Association (NRA) files to the dark web, US media said.

The group, known as Grief, posted 13 files to its website Wednesday and claimed to have hacked the NRA. It is threatening to release more of the files if not paid, though it did not publicly state how much, NBC News reported.

Like many ransomware gangs, Grief often posts a handful files stolen from a victim in an efforts to spur a ransom payment.

While paying any ransomware hacker is a risk, Grief is particularly tricky. Cybersecurity experts widely believe Grief is a rebranded effort by a group of Russian cybercriminals who previously used the nickname Evil Corp, which is currently under sanctions by the US Treasury Department.

"It's the same group," stated Allan Liska, a ransomware analyst at the cybersecurity firm Recorded Future.

The NRA didn’t respond when reached for comment. It did, however, post a tweet saying that "does not discuss matters relating to its physical or electronic security", and that the organization "takes extraordinary measures to protect information regarding its members, donors, and operations".

Grief, though a criminal group, isn't known for bluffing when it claims an organization was a victim, noted Brett Callow, who tracks ransomware groups at the cybersecurity company Emsisoft.

"I’m not aware of any incidents in which Grief/Evil Corp has attempted to take credit for other operations’ attacks," Callow added.

Most of the files viewed by NBC News relate to NRA grants. They include blank grant proposal forms, a list of recent grant recipients, an email to a recent grant winner earlier this month, as well as a W-9 form. The leak also includes the minutes from a Sept. 24 NRA teleconference meeting.

Cybercriminals, many of them based in and near Russia, have made ransomware a constant threat in recent years, regularly hacking businesses, schools, police departments and various other institutions. While the White House has taken several steps to improve US defenses, ransomware is still a lucrative criminal enterprise. Last year, it cost nearly $75 billion in damages worldwide, Emsisoft found.

Jen Easterly, the director of the Cybersecurity and Infrastructure Security Agency, noted earlier this month that Russian ransomware hackers have yet to make “any significant, material changes” to their frequent attacks against American businesses.

On Friday, after the FBI reportedly took down one major ransomware group, several others vowed retaliation and to punish the US.