Select Page

Saudi Aramco Targeted In $50M Crypto Extortion Scheme After Major Data Breach

Saudi Aramco Targeted In $50M Crypto Extortion Scheme After Major Data Breach

Saudi Aramco Targeted In $50M Crypto Extortion Scheme After Major Data Breach

Saudi Aramco is pointing the finger at a third-party contractor for a breached data incident which has resulted in demands for $50 million in ransom from an unknown mysterious entity in what’s looking like a Colonial Pipeline style cyber drama. The Saudi oil giant acknowledged to The Associated Press that it “recently became aware of the indirect release of a limited amount of company data which was held by third-party contractors.” 

“We confirm that the release of data was not due to a breach of our systems, has no impact on our operations and the company continues to maintain a robust cybersecurity posture,” Aramco said, without specifying the contractor through which the breach happened. The language of “indirect release” reveals it was likely a leak and not the result of an external hacking operation.

Saudi Aramco file image, via The Times

It’s also unclear just what type of data or possibly “compromising” content the hackers are in possession of – only that they deem it valuable enough to attempt the blackmail scheme, now subject of multiple international reports. It appears they are seeking payment in the cryptocurrency Monero (XMR).

The AP describes that “A page accessed by the AP on the darknet — a part of the internet hosted within an encrypted network and accessible only through specialized anonymity-providing tools — claimed the extortionist held 1 terabyte worth of Aramco data. A terabyte is 1,000 gigabytes.”

“The page offered Aramco a chance to have the data deleted for $50 million in cryptocurrency, while another timer counted down from $5 million, likely in an effort to pressure the company. It remains unclear who is behind the ransom plot,” the report continues.

Among the world’s biggest companies, Saudi Aramco has over 66,000 employees and sees about $230 billion in annual revenue, and is valued at $2 trillion. Like the Colonial Pipeline saga in the US, the company is no doubt mulling as ‘an option’ the possibility of paying the ransom to make its problems quickly go away.

According to the prominent cybersecurity publication Bleeping Computer, it appears those in possession of the terabyte of Aramco data do have highly sensitive information. “The group says that the 1 TB dump includes documents pertaining to Saudi Aramco’s refineries located in multiple Saudi Arabian cities, including Yanbu, Jazan, Jeddah, Ras Tanura, Riyadh, and Dhahran,” the publication writes.

Bleeping Computer further details that some of this data includes:

  1. Full information on 14,254 employees: name, photo, passport copy, email, phone number, residence permit (Iqama card) number, job title, ID numbers, family information, etc.
  2. Project specification for systems related to/including electrical/power, architectural, engineering, civil, construction management, environmental, machinery, vessels, telecom, etc.
  3. Internal analysis reports, agreements, letters, pricing sheets, etc.
  4. Network layout mapping out the IP addresses, Scada points, Wi-Fi access points, IP cameras, and IoT devices.
  5. Location map and precise coordinates.
  6. List of Aramco’s clients, along with invoices and contracts.

The group is threatening to sell or dump the Aramco proprietary data online if the company doesn’t act fast to pay the ransom, even reportedly setting up a ‘countdown’ clock.

Tyler Durden
Wed, 07/21/2021 – 17:40


This post has been republished with permission from a publicly-available RSS feed found on Zero Hedge. The views expressed by the original author(s) do not necessarily reflect the opinions or views of The Libertarian Hub, its owners or administrators. Any images included in the original article belong to and are the sole responsibility of the original author/website. The Libertarian Hub makes no claims of ownership of any imported photos/images and shall not be held liable for any unintended copyright infringement. Submit a DCMA takedown request.

-> Click Here to Read the Original Article <-

About The Author

Tyler Durden

Zero Hedge's mission is to widen the scope of financial, economic and political information available to the professional investing public, to skeptically examine and, where necessary, attack the flaccid institution that financial journalism has become, to liberate oppressed knowledge, to provide analysis uninhibited by political constraint and to facilitate information's unending quest for freedom. Visit https://www.zerohedge.com

Leave a reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Welcome

Bringing together a variety of news and information from some of today’s most important libertarian thought leaders. All feeds are checked and refreshed every hour and pages auto-refresh every 15 minutes. External images are deleted after 30 days.

Time since last refresh: 0 second

Publish Your Own Article

Follow The Libertarian Hub


Please consider donating using any of the cryptocurrencies below or use the Brave browser to tip using Basic Attention Tokens (BAT). Your anonymous contributions help keep this website running for everyone to enjoy!

Donate

Take Control of Your Domain Names
The Ultimate Managed Hosting Platform

Weekly Newsletter

Newsletter Signup

Subscribe to our newsletter to receive a weekly email report of the top five most popular articles on the Libertarian Hub!

Weekly Newsletter SignupTop 5 Stories of the Week

Subscribe to our newsletter to receive a weekly email report of the top five most popular articles on the Libertarian Hub!