The Black Shadow hacker group, who took responsibility for a cyber attack on the Israeli insurance company Shirbit on Monday, is demanding a ransom of 50 Bitcoins - worth approximately $1 million - for the data the group allegedly stole from the company's servers.
The group further threatened to double the ransom every 24 hours, adding they are in possession of a trove of personal data that they will sell to "third parties" unless the ransom is paid in full within three days.
The group took responsibility for the attack in a Twitter post on Monday, where it also released several personal documents such as ID numbers and drivers licenses and addresses that were allegedly stolen from Shirbit's systems - including that of a senior judge.
“A huge cyberattack has taken been [sic] place by Black Shadow team. There has been a massive attack on the network infrastructure of Shirbit Company , which is in israel [sic] economic sphere” tweeted the group, while tagging several major media outlets around the world including the BBC, Reuters and CNN. The Black Shadow account was later suspended by Twitter.
The biggest worry of both Shirbit and the National Cyber Directorate - both of which are investigating the attack - lies in the fact that Shirbit was awarded the tender to provide car insurance for state employees several years in a row, meaning that the company holds vast amount of information on civil servants that may have now been compromised.
According to cyber experts, this is the same group behind a thwarted attack on Israel's major defense corporations a few months ago.
The Capital Market, Insurance and Savings Authority, which supervises insurance and pension funds in Israel, said: "An initial inspection shows that the information leaked was customers' insurance details… The inspection is currently continuing.”
Omri Segev Moyal, a cyber expert from cybersecurity firm Profero, said: "Israel is a preferred target for 'hacktivists', especially Islamists. We see such attacks on a regular basis… Due to the escalation with Iran, there is a real possibility they are behind the attack and are hiding behind the activist group instead of being officially exposed."
Einat Meyron, an expert in preparing for and handling cyber strikes in businesses said: "The [leaked] documents indicate the scale and depth of the hack. As everyone knows, Shirbit won the car insurance tender for state employees, so the incident is troubling for many. The fact that they gained access to much extensive information indicates a continuum of failures, lack of control and poor management. "
Dr. Harel Menashri, one of the founders of the Shin Bet security service’s cyber directorate and the current head of cyber at Holon Institute of Technology, said the attack is most troubling.
"We should remember that Shirbit had the tender for civil servants," said Menashri. "The thing now is to do damage control [as] these people - including civil servants and the senior judge - may be exposed to coercion, extortion and even surveillance.”
Republished with permission from i24NEWS