Dolly.com Pays Ransom, Attackers Release Data Anyway
On-demand moving and delivery platform Dolly.com has reportedly suffered a ransomware attack. The cybercriminals behind the attack claimed that the company paid the ransom but did not offer enough money, so they published the stolen data. The attackers also shared a chat with the company on an underground criminal forum. It is believed that sensitive company and customer data, including credit card information, was stolen. The attackers also obtained access to internal systems and AWS cloud instances. The incident highlights the untrustworthy nature of ransomware operators, as paying the ransom does not guarantee the return of data. The downloadable files containing the stolen data were eventually removed. Cybersecurity experts have provided recommendations to mitigate future incidents.