SmartSource Inc. Hit by Fog Ransomware in Major Data Breach

Incident Date: Oct 30, 2024

Attack Overview

VICTIM

SmartSource

INDUSTRY

Business Services

LOCATION

USA

ATTACKER

Fog

FIRST REPORTED

October 30, 2024

Request Removal

SmartSource Inc. Targeted by Fog Ransomware Group in Major Cyberattack

SmartSource Inc., a leading IT services provider based in Illinois, has become the latest victim of a ransomware attack orchestrated by the notorious Fog ransomware group. The attack, which has been claimed on the group's dark web leak site, has resulted in the exfiltration of 81.5 GB of sensitive data, including medical documents, human resources records, and personal identification information.

About SmartSource Inc.

Established in 1996, SmartSource Inc. is a prominent player in the IT staffing and technical solutions sector. The company specializes in IT staffing, multi-site deployment, and managed IT services, catering to industries such as consumer goods, financial services, healthcare, and technology. With over 500 employees and an estimated annual revenue of $125.6 million, SmartSource is recognized for its rapid access to skilled tech specialists and its ability to deploy technical resources effectively across the United States and Canada.

Details of the Ransomware Attack

The Fog ransomware group claims to have stolen a wide array of sensitive data from SmartSource, including non-disclosure agreements, social security numbers, and personal passports. This incident marks the second time SmartSource has been targeted by cybercriminals, following a previous attack by the BianLian ransomware group. The repeated breaches highlight potential vulnerabilities in SmartSource's cybersecurity infrastructure, making it an attractive target for threat actors.

Fog Ransomware Group: A Growing Threat

Fog ransomware, a variant of the STOP/DJVU family, has been a significant threat since its emergence in November 2021. Known for its rapid encryption capabilities and double extortion tactics, the group has shifted its focus towards more lucrative targets, including the financial sector. The ransomware typically gains access through compromised VPN credentials or exploiting known vulnerabilities, which may have been the entry point in the SmartSource attack.

Sources

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.