Non-Profit Save the Children Gets Hit By Ransomware Data Attack
Table of Contents
- By Steven
- Sep 20, 2023
Save The Children is an organization that specializes in helping children live healthy lives. The non-profit works in multiple countries, helping to provide for children's needs, especially in areas affected by war or tragedy. This organization was recently the target of a ransomware hacker group and suffered huge data losses as a result of that targeting.
How Did the Attack Occur?
According to the cyber gang BrianLian, Save the Children was targeted and infiltrated, and huge amounts of data were stolen from the organization. The data stolen was used as a source of leverage in an attempt to get the organization to pay a ransom. If the ransom was not paid, the data stolen would be distributed or resold in an effort to generate profit somehow. Save the Children currently has a team investigating the incident, logging all the stolen data, and planning a security response to the whole ordeal. A spokesperson from Save the Children has confirmed that the company was hit by a data breach, and some of its files were tampered with. The organization also stated that its operations are continuing without interruption and that it will continue providing services while handling the data breach problem.
What Information Was Viewed or Stolen?
We don't have a specific breakdown of the data stolen. According to BrianLian approximately 6.8 TB of total data was taken from the organization. The data includes things like HR files and personal data handled by Save the Children. The information taken also supposedly includes approximately 800 GB of financial records. The information taken could be harmful to volunteers as well as individuals served by Save the Children, and the organization itself faces potential problems because of all the information stolen.
How Did Save the Children Admit to the Breach?
Save the Children replied to questions regarding the breach. BrianLian, the cybergang reportedly responsible for the data breach, originally announced the data breach. Some threat reporting outlets like VX-Underground and analysts like Brett Callow reported on this data breach, and they speak about past attacks launched by BrianLian as well.
What Will Become of the Stolen Information?
BrianLian begins by extorting the organization it steals from in an attempt to collect a ransom payment. If the ransom demand isn't met, the information is normally sold off to other hackers or just given away. All the stolen data from Save the Children will likely reach a similar fate eventually.
What Should Affected Parties Do in the Aftermath of the Breach?
If your personal data is involved in the Save the Children breach, you should expect it to be released to the public and misused. Your information could be used in cyber attacks, and it's possible for you to experience identity theft attacks and phishing attacks. If you believe your information was lost to this attack, check your credit, consider freezing your credit, and watch your financial accounts. Don't give away any personal information, especially to people you don't know or trust explicitly, and be cautious with what links you click in your email or text messages.