The Russian-linked hacker gang claims to have attacked McDonald’s with ransom software as federal authorities issue a “shield” warning to ALL US companies to “prepare for destructive cyber activity”
- Hacker gang Snatch on Friday claimed to have stolen 500 GB from McDonald’s
- Experts say the entire buyout group is Russian-speaking
- This may be the first volley of Russian cyber revenge against the United States
- CISA has issued a “shield-raising” warning to all US organizations for potential attacks
Russia-linked ransomware group says cyberattack on McDonald’s Corporation as federal officials warn of potentially widespread targeting of US business after unprovoked by Russia invasion of Ukraine.
The hacking gang Snatch on Friday claimed to have stolen 500 gigabytes of data from the fast food giant based in Chicagoposting his request for an undisclosed ransom in the dark web.
A McDonald’s spokesman did not immediately respond to a request for comment from DailyMail.com.
The iconic company, which means the American economy and culture of the world with more than 38,000 locations in 100 countries, has a market capitalization of 186 billion dollars.
The alleged violation of McDonald’s comes when the US Cyber Security and Infrastructure Security Agency issues shield lift warning to all American companies and organizations, urging them to take steps to protect themselves from a potential Russian cyber attack.
The hacking gang Snatch on Friday posted files on the dark web, claiming to have stolen 500 gigabytes of data from McDonald’s
McDonald’s is an iconic American company based in Chicago. It has more than 38,000 locations in 100 countries and a market capitalization of $ 186 billion
The group behind the buy-out software Snatch calls itself the “Snatch Team” and all appear to be Russian-speaking, according to a 2019 report from the security company. Sophos.
The report says that the group behind ransomware seems to have been active since the summer of 2018, although they have maintained a fairly low profile, committing several violations that create titles.
The malicious software used by the hacker gang is very complex and works by restarting the victims’ computers in a safe mode in which most security measures are disabled.
Russia maintains advanced cyber-off capabilities, both through state-controlled cyber warfare teams and through criminal gangs that appear to be acting with state approval, as long as they target only Western victims.
Shortly before Vladimir Putin’s invasion of Ukraine, there were massive and widespread cyberattacks against Ukrainian government websites and infrastructure.
The US official now warns that Russia could use similar tactics against the United States and European allies in retaliation for the sanctions they have imposed.
“Russia’s unprovoked attack on Ukraine, accompanied by cyber attacks on the Ukrainian government and critical infrastructure organizations, could have consequences for our own nation’s critical infrastructure, a potential we have been warning about for months,” CISA said in a statement. warning.
The U.S. Cybersecurity and Infrastructure Security Agency issued a “shielding” signal to all U.S. companies and organizations this week
“Every organization – large and small – must be prepared to respond to destructive cyberactivity,” CISA said in a statement.
“While there are currently no specific or credible cyber threats to the US homeland, we have in mind the potential for Russia’s destabilizing actions to affect organizations both inside and outside the region, especially following sanctions imposed by the United States and our allies.” said the agency.
Experts have warned that criminal hacking gangs in Russia, which often appear to operate with tacit government approval, now appear to support Putin in his confrontation with the West.
“It’s not surprising that Russian-related cybercriminals support Russia,” Brett Callow, a cybersecurity analyst at Emsisoft, told DailyMail.com.
“While some of their threats may be inactive – they probably do not have the ability to choose critical infrastructure at will – this is still a good time for all organizations to ensure that their shields are fully activated,” he added.
This is a volatile and unpredictable situation.
U.S. organizations are urged to report any cyber incidents or abnormal CISA activity to [email protected] or 888-282-0870.
Advertising