Everest Ransomware Strikes Zuber Gardner CPAs Inc.

Incident Date: May 09, 2024

Attack Overview

VICTIM

Zuber Gardner CPAs Inc.

INDUSTRY

Business Services

LOCATION

USA

ATTACKER

Everest

FIRST REPORTED

May 9, 2024

Request Removal

Ransomware Attack on Zuber Gardner CPAs Inc. by Everest

Victim Profile

Zuber Gardner CPAs Inc. is a full-service tax, accounting, and business consulting firm based in Cleveland, Ohio. The company's team of experienced CPAs is dedicated to helping businesses achieve lasting economic success by providing customized financial services tailored to their unique needs. Their services include tax preparation, bookkeeping setup, and expert accounting solutions designed to optimize financial decisions and minimize tax obligations.

Company Size and Standout

The firm is a small to medium-sized business that stands out by offering a free consultation to determine how it can best serve its clients. This approach demonstrates a commitment to understanding the unique needs of each client and providing personalized services.

Industry Vulnerabilities

Being in the Business Services sector, the company may have been targeted by threat actors due to the sensitive financial information they handle for their clients. The company's focus on small and medium-sized businesses could make them an attractive target for cybercriminals looking to exploit vulnerabilities in their systems.

Ransomware Group Tactics

The Everest Ransomware Group, known for its involvement in ransomware attacks and data exfiltration, targeted Zuber Gardner CPAs Inc. in a recent cybercrime attack. The group employs a combination of compromised user accounts and Remote Desktop Protocol (RDP) for lateral movement. They use encryption algorithms to encrypt files and demand ransom for decryption keys.

Penetration and Data Exfiltration

In the attack on Zuber Gardner CPAs Inc., Everest managed to exfiltrate a substantial amount of data totaling 350 GB. The specific ransom demands were not disclosed, but the attack highlights the group's ability to penetrate the company's systems and extract sensitive information.

Sources:

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.