Security Experts:

Ransomware Operators Claim They Hacked LG

The cybercriminals behind the ransomware known as Maze claim to have breached the systems of LG Electronics and obtained highly sensitive information.

The operators of the Maze ransomware are known for targeting major organizations and not only encrypting their files, but also stealing files and threatening to make them public unless a ransom is paid.

The hackers recently claimed to have breached LG and they posted a few screenshots apparently showing files taken from the electronics giant’s systems.

The cybercriminals said they obtained the source code of a product developed by LG for a major telecommunications company. They don’t name the company, but the names of the files in a screenshot suggest it may be AT&T.

Files hackers claim to have stolen from LG

SecurityWeek has reached out to LG for comment on the hackers’ claims and will update this article if the company responds.

A statement published earlier this week by the Maze hackers on their website — the link to the site was provided to SecurityWeek by digital risk protection solutions company Digital Shadows — warns victims of the Maze ransomware that not paying the ransom will cost them much more than the actual ransom.

The cybercriminals say companies that hire cybersecurity firms or those that seek help from government agencies can end up paying hundreds of millions of dollars once their information has been leaked.

They provided ST Engineering, MaxLinear, Conduent and MJ Brunner as examples of companies that have refused to pay up and which they believe will suffer serious financial losses as a result.

The hackers have told customers who pay up that it will not only cost them far less — they claim they are open to negotiations — but also promised them a comprehensive security report that will help them protect their systems against future attacks.

Related: Cognizant Says Data Was Stolen in April Ransomware Attack

Related: Double Extortion: Ransomware's New Normal Combining Encryption with Data Theft

Related: Maze Ransomware Operators Publish Victim Data Online

view counter
Eduard Kovacs (@EduardKovacs) is a contributing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.