Ransomware Attack on FINGERS by KillSec: A Detailed Analysis

FINGERS, a brand under Dynamic Conglomerate Private Limited, has recently fallen victim to a ransomware attack orchestrated by the notorious cybercriminal group KillSec. The attack has compromised the company's website, fingersstore.com, and the attackers are demanding a ransom of 2000 EUR to erase the data breach.

About FINGERS

Founded in 2019 and headquartered in Mumbai, India, FINGERS specializes in consumer electronics, particularly digital accessories. The company offers over 65 products across 16 categories, including earphones, headsets, speakers, computer peripherals, and mobile accessories. FINGERS is known for its innovative products, such as the FINGERS Digi P10 Power Banks and the BFF True Wireless Earbuds. The company operates with a customer-first philosophy, supported by an extensive service network of over 140 service centers across India.

Company Size and Market Presence

FINGERS is a private limited company with a workforce of approximately 26 to 50 employees and an annual turnover estimated between Rs. 50 to 100 Crore. The company is led by CEO Sandeep Parasrampuria and has quickly established itself as a prominent player in the consumer electronics market in India. Its commitment to innovation and competitive pricing has garnered a substantial customer base.

Vulnerabilities and Targeting

Despite its rapid growth and market presence, FINGERS' relatively small size and limited cybersecurity infrastructure may have made it an attractive target for threat actors like KillSec. The company's focus on innovation and customer service might have diverted resources away from cybersecurity, leaving it vulnerable to sophisticated ransomware attacks.

Attack Overview

The ransomware group KillSec has claimed responsibility for the attack on FINGERS via their dark web leak site. The attackers have breached the company's website and are demanding a ransom of 2000 EUR. The exact method of penetration remains unclear, but it is speculated that the attackers exploited vulnerabilities in the company's web infrastructure or employee credentials.

About KillSec

KillSec, also known as Kill Security, is a ransomware group known for targeting various industries, including government, manufacturing, defense, and banking. The group uses a variety of communication channels such as Telegram, Session Messenger, and Tox, and demands ransom payments in Monero (XMR) cryptocurrency. KillSec is tracked by various cybersecurity platforms, including ID Ransomware and Ransom-DB, and is known for its extensive targeting and significant extortion amounts.

Penetration Methods

KillSec is known for its sophisticated tactics, which may include phishing attacks, exploiting software vulnerabilities, and leveraging weak security protocols. The group’s ability to adapt and use multiple communication channels makes it a formidable threat to organizations with inadequate cybersecurity measures.

• FINGERS Official Website
• Company Contact Details
• WatchGuard Ransomware Tracker
• ID Ransomware
• Ransom-DB