Equentis Wealth Targeted by KillSec in Ransomware Breach

Incident Date: Nov 19, 2024

Attack Overview

VICTIM

Equentis Wealth

INDUSTRY

Finance

LOCATION

India

ATTACKER

Killsec

FIRST REPORTED

November 19, 2024

Request Removal

Ransomware Attack on Equentis Wealth: A Detailed Analysis

Equentis Wealth Advisory Services Limited, a prominent investment advisory firm based in Mumbai, India, has recently fallen victim to a ransomware attack orchestrated by the notorious group KillSec. This attack has raised significant concerns within the financial sector, given Equentis's reputation for providing tailored financial solutions to high-net-worth individuals and institutional investors.

Company Profile and Vulnerabilities

Established in 2009, Equentis Wealth Advisory Services Limited is recognized for its commitment to investor protection and transparent advisory practices. The firm offers a range of services, including private wealth management, research and ranking, and financial literacy initiatives. With a modest team of approximately 16 employees and an annual revenue of around $1 million, Equentis stands out for its personalized service model and innovative use of technology, such as its in-house Quant Engine powered by over 300 algorithms.

Despite its strengths, Equentis's reliance on digital platforms and data-driven strategies may have exposed vulnerabilities that threat actors like KillSec could exploit. The firm's focus on high-net-worth clients and sensitive financial data makes it an attractive target for cybercriminals seeking financial gain through extortion.

Attack Overview

KillSec, also known as KillSecurity, has claimed responsibility for the attack on Equentis via their dark web leak site. The group reportedly gained access to sensitive data, including personal client information, financial records, portfolio details, and business strategies. They have threatened to publish this data within the next 7-8 days if their ransom demands are not met.

About KillSec

Founded in 2021, KillSec has gained notoriety for its ransomware activities and data breaches. The group operates a Ransomware as a Service (RaaS) platform, allowing aspiring cybercriminals to deploy ransomware attacks with ease. KillSec distinguishes itself through its advanced locker tools, user-friendly dashboards, and a pricing model that democratizes access to sophisticated cybercrime tools.

KillSec's ability to exploit vulnerabilities and employ social engineering tactics makes it a formidable threat. In the case of Equentis, the group's penetration of the company's systems may have involved exploiting website vulnerabilities or conducting credential theft, tactics they have used in previous attacks.

Sources

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.