Ransomware Attack on ThrottleUp.io by RansomHub

Victim Overview

ThrottleUp.io, a technology company based in California, specializes in providing digital marketing services, business consulting, and software development. The company, founded by Bill Ferrante, focuses on using technology to simplify business problems and collaborates with clients to build solutions. ThrottleUp.io has less than 25 employees and generates revenue of less than $5 million.

Attack Details

On May 22, 2024, ThrottleUp.io fell victim to a ransomware attack by the RansomHub group. The attackers breached the company's network, exfiltrated confidential data, and disrupted their systems. RansomHub has demanded negotiations for decryption and data erasure, threatening to leak the stolen data if their demands are not met.

Ransomware Group Profile

RansomHub is a newly emerged ransomware group known for backing up their claims with data leaks. Operating as a Ransomware-as-a-Service (RaaS) group, RansomHub affiliates receive 90% of the ransom money, while the main group retains 10%. The group targets various countries, including the US, Brazil, Indonesia, and Vietnam, with a focus on healthcare-related institutions.

Attack Vulnerabilities

ThrottleUp.io's prominence in the digital marketing and technology sector may have made them a target for threat actors like RansomHub. The company's access to sensitive client data and their reliance on technology for business operations could have made them vulnerable to ransomware attacks. Additionally, the company's size and revenue may have made it challenging for them to invest in robust cybersecurity measures.

Sources:

• ThrottleUp.io
• Socradar - RansomHub
• Barracuda Blog - AI Ransomware