The infrastructure of Advantech, a company engaged in the development and production of chips for the Internet of Things (IoT), was attacked by the Conti encryption virus. Hackers demand ransom in the amount of 750 BTC.
Advantech holds a leading position in the IoT industry, and the company’s revenue for 2019 was $1.9 billion. Therefore, the hackers demanded a ransom of 750 BTC ($14.5 million) for decrypting the data. The attackers stressed that before encrypting the files, all the information was copied to the hackers ‘ servers.
The hacking of the company took place on November 21. The hackers stressed that if the ransom is not paid, they will start publishing Advantech’s internal information. On November 27, an archive of 3.03 GB appeared on the attackers ‘ website, in which, according to the hackers, 2% of the copied data was posted.
Recall that the Conti virus was first seen “in the wild” in December 2019, but the peak of infections with this cryptographer fell in July 2020. Conti is based on the code of the well-known Ryuk virus. Interestingly, when encrypting files, Conti starts 32 threads at once to speed up the process.