Protecta Security Breached by APT73/BASHE Group in Ransomware Attack
Ransomware Attack on Protecta Security by APT73 / BASHE / BASHE Group
Protecta Security, a prominent insurance company based in Peru, specializing in comprehensive security solutions, recently fell victim to a ransomware attack orchestrated by the APT73 / BASHE / BASHE group. This attack has resulted in the compromise of sensitive data, including internal documents, financial records, and personal information of employees and customers.
Company Profile
Protecta Security is a well-established company operating in the insurance sector, offering tailored insurance products to a diverse demographic. The company's focus on microinsurance sets it apart, allowing it to cater to individuals with varying financial means. Protecta Security is part of Grupo Security, a Chilean financial group, further solidifying its position in the market.
Industry Standing
Protecta Security stands out in the insurance industry for its innovative approach to microinsurance, emphasizing inclusivity and accessibility. The company's commitment to providing simple and accessible insurance solutions has garnered a significant market presence, reflected in its substantial revenues.
Vulnerabilities
As a company dealing with sensitive financial and personal data, Protecta Security faces inherent vulnerabilities that make it a target for threat actors like the APT73 / BASHE / BASHE group. The nature of the insurance industry, with its vast amounts of valuable data, makes companies like Protecta Security attractive targets for ransomware attacks.
Attack Overview
The APT73 / BASHE / BASHE group successfully breached Protecta Security's systems, gaining access to 4.7 GB of data, which includes critical internal documents, financial records, and personal information. The attackers have demonstrated their ability to infiltrate the company's network and exfiltrate sensitive data, posing a significant threat to the company's operations and reputation.
Ransomware Group: APT73 / BASHE / BASHE
The APT73 / BASHE / BASHE group is a newly emerged ransomware entity known for its aggressive operational approach and mimicry of established ransomware models like LockBit. Despite showing signs of amateurism, APT73 / BASHE / BASHE has quickly gained notoriety for targeting organizations across various sectors, including insurance companies like Protecta Security.
Technical Capabilities
APT73 / BASHE / BASHE's technical capabilities include sophisticated encryption methods and double-extortion strategies, where they threaten to leak stolen data if ransom demands are not met. The group's emergence aligns with a broader trend of new ransomware groups filling the void left by declining older entities, posing challenges for cybersecurity professionals.
Sources
See Halcyon in action
Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!