iscover
Share this article on:
Powered by
MOMENTUM
MEDIA
Promissory notes, executive bonus schemes, payroll details, and a wealth of client data have all been exposed on the darknet.
The Akira ransomware gang has dropped over 90 gigabytes of data belonging to Frost & Sullivan on its darknet leak site, claiming that the company “underestimated their data”.
The gang made the announcement on its retro black and green leak site last month after declaring it had hacked the company in July 2023.
“Planning is always not an easy process and sometimes leads to a failure,” an Akira spokesperson said. “These guys underestimated their data and we suppose their clients won’t be happy seeing news of this leak. Tons of contracts with big names of international businesses, personal documents including top management and more.”
The gang said at the time that more than “90GBs of data will be available soon”. Unlike some ransomware operators, Akira does not date its updates or uploads, so that “soon” has likely happened in recent weeks.
The data that has been leaked appears to come from two drives, a file server and a folder called Frost.com – all possibly from a single machine – and features documents detailing the bonus schemes of many of the company’s senior staff, human resources documents, and payroll data.
Also in the leak are several user folders containing client proposals, scans of signed service agreements, as well as invoices and purchase orders. There are also several contact lists for external clients, such as an entire folder dedicated to senior staff at Cisco, including security contacts.
While some of the data suggests the source of the data is Frost & Sullivan’s Singapore office, the data includes details of Frost & Sullivan operations from all over the world, including Australia, Canada, and the US. One document lists employee details for more than 1,200 of the company’s 1,800 staff.
Wire transfer and banking details are also included in the leak, including credit card reports.
Some of the files date back as far as 2016, while the most recent are dated to June 2023.
Frost & Sullivan has declined to comment on the leak.
David Hollingworth has been writing about technology for over 20 years, and has worked for a range of print and online titles in his career. He is enjoying getting to grips with cyber security, especially when it lets him talk about Lego.
Be the first to hear the latest developments in the cyber industry.
