TECH NEWS

Cyber criminals publish more than 4,000 stolen Sepa files

24 January 2021
Godfred Meba
79 Comments
        

Read Time: 3 minutes
Typing on keyboard

Cyber criminals who stole thousands of digital files belonging to environmental regulator Sepa have published them on the internet.

The public body had about 1.2GB of data stolen from its digital systems on Christmas Eve.

Sepa rejected a ransom demand for the attack, which has been claimed by the international Conti ransomware group.

Contracts, strategy documents and databases are among the 4,000 files released.

The data has been put on the dark web – a part of the internet associated with criminality and only accessible through specialised software.

Sepa chief executive Terry A’Hearn said: “We’ve been clear that we won’t use public finance to pay serious and organised criminals intent on disrupting public services and extorting public funds.

“We have made our legal obligations and duty of care on the sensitive handling of data a high priority and, following Police Scotland advice, are confirming that data stolen has been illegally published online.

“We’re working quickly with multi-agency partners to recover and analyse data then, as identifications are confirmed, contact and support affected organisations and individuals.”

The attack locked Sepa’s emails and contacts centre but Sepa said “priority regulatory, monitoring, flood forecasting and warning services were continuing to adapt and operate”.

Sepa said the theft was the equivalent to a fraction of the contents of an average laptop hard drive.

Terry A'Hearn
image captionSepa chief executive Terry A’Hearn said the organisation had faced a “significant and sophisticated cyber-attack”

Some of the information stolen was already publicly available but other files included data about staff and suppliers was not.

Where information has been identified to date, staff have been contacted and are being supported.

‘Serve as a warning to future victims’

Brett Callow, of cyber security company Emsisoft, has been tracking the Sepa ransomware attack.

He said: “Conti may well be the work of the same people behind another type of ransomware called Ryuk.

“There are similarities in the code, ransom note and attack mechanisms.

“When the complete haul of data is posted like this, it usually means the group has given up hope of being able to extract payment from the victim of monetise the data in other ways.

“It’s a loss for them. At this point, they’ve lost all leverage and the action is intended to serve as a warning to future victims.”

Det Insp Michael McCullagh, of Police Scotland’s cybercrime investigations unit, said: “This remains an ongoing investigation.

“Inquiries remain at an early stage and continue to progress including deployment of specialist cybercrime resources to support this response.”

Presentational grey line
Analysis box by Joe Tidy, Cyber reporter

The authorities will be pleased.

It looks like Sepa decided not to play ball with the cyber criminals.

Ransomware is a scourge that is costing organisations billions of pounds and every time a victim pays, it fuels further attacks.

Sadly for Sepa this is far from over.

By the looks of the stash of files that the hackers stole and encrypted, Sepa will have months of work ahead to try to recover important documents and spreadsheets from backups and rebuild their records.

It’s also telling that, according to the hackers website, almost 1,000 people have so far looked at the documents.

Who knows what other criminals or hackers are poring over the files right now.

Making the documents open to all means that information can be extracted to potentially be used against Sepa in further attacks or extortion attempts.

It will be months, perhaps even years until the organisation can say it is safe once more and can put this cyber attack behind it.


        

79 thoughts on “Cyber criminals publish more than 4,000 stolen Sepa files

  35. I urge you steer clear of this platform. The experience I had with it has been purely dismay as well as doubts about deceptive behavior. Proceed with extreme caution, or better yet, seek out a more reputable service for your needs.

    Reply

  36. I urge you to avoid this site. My own encounter with it has been only dismay as well as doubts about deceptive behavior. Exercise extreme caution, or better yet, look for a trustworthy site to fulfill your requirements.

    Reply

  37. I highly advise steer clear of this site. My own encounter with it has been purely disappointment and suspicion of fraudulent activities. Be extremely cautious, or alternatively, find a trustworthy service to meet your needs.

    Reply

  38. I urge you steer clear of this site. The experience I had with it has been only disappointment along with suspicion of scamming practices. Exercise extreme caution, or alternatively, seek out a more reputable service for your needs.

    Reply

  39. I strongly recommend to avoid this site. The experience I had with it was nothing but disappointment along with suspicion of fraudulent activities. Exercise extreme caution, or alternatively, seek out an honest site for your needs.

    Reply

  40. I strongly recommend to avoid this platform. My own encounter with it was purely disappointment and suspicion of fraudulent activities. Proceed with extreme caution, or alternatively, find a trustworthy site for your needs.

    Reply

  41. I urge you steer clear of this platform. The experience I had with it was purely dismay and doubts about scamming practices. Proceed with extreme caution, or alternatively, seek out an honest site for your needs.

    Reply

  42. I highly advise to avoid this site. My own encounter with it has been only dismay and suspicion of scamming practices. Exercise extreme caution, or alternatively, find a trustworthy site for your needs.

    Reply

  43. I urge you to avoid this site. My own encounter with it was purely disappointment as well as concerns regarding deceptive behavior. Proceed with extreme caution, or alternatively, look for a more reputable service for your needs.

    Reply

  44. I strongly recommend stay away from this platform. My personal experience with it has been nothing but frustration and doubts about scamming practices. Exercise extreme caution, or better yet, find an honest service to fulfill your requirements.

    Reply

  45. I strongly recommend stay away from this site. My own encounter with it was purely disappointment and doubts about fraudulent activities. Be extremely cautious, or even better, seek out an honest site to meet your needs.

    Reply

  47. I strongly recommend steer clear of this site. My personal experience with it has been nothing but frustration as well as suspicion of deceptive behavior. Exercise extreme caution, or alternatively, look for a more reputable service to fulfill your requirements.I strongly recommend stay away from this platform. The experience I had with it has been purely dismay and doubts about fraudulent activities. Be extremely cautious, or even better, find a more reputable platform to fulfill your requirements.

    Reply

  48. I highly advise steer clear of this site. My own encounter with it was only dismay as well as concerns regarding deceptive behavior. Be extremely cautious, or alternatively, find a more reputable service to meet your needs.I strongly recommend steer clear of this site. My personal experience with it was purely frustration along with concerns regarding scamming practices. Proceed with extreme caution, or better yet, look for a trustworthy platform to fulfill your requirements.

    Reply

  49. I highly advise steer clear of this platform. The experience I had with it has been only disappointment along with concerns regarding scamming practices. Be extremely cautious, or even better, find a trustworthy platform to meet your needs.

    Reply

  50. I urge you steer clear of this site. My personal experience with it was only frustration as well as doubts about fraudulent activities. Exercise extreme caution, or better yet, seek out an honest site to meet your needs.

    Reply

  51. I highly advise steer clear of this site. My own encounter with it has been only dismay along with concerns regarding deceptive behavior. Exercise extreme caution, or alternatively, seek out a trustworthy service for your needs.

    Reply

  52. I highly advise steer clear of this platform. The experience I had with it was nothing but frustration as well as doubts about deceptive behavior. Proceed with extreme caution, or even better, find an honest site to fulfill your requirements.

    Reply

  53. I urge you stay away from this site. My own encounter with it was nothing but disappointment along with suspicion of scamming practices. Exercise extreme caution, or even better, find a trustworthy service to fulfill your requirements.

    Reply

  57. I urge you steer clear of this site. My own encounter with it was nothing but dismay along with suspicion of deceptive behavior. Be extremely cautious, or better yet, find an honest platform for your needs.

    Reply

  58. I urge you to avoid this platform. My personal experience with it has been only frustration as well as concerns regarding scamming practices. Exercise extreme caution, or better yet, find a more reputable platform for your needs.

    Reply

  59. I highly advise steer clear of this site. The experience I had with it has been purely dismay along with doubts about fraudulent activities. Be extremely cautious, or better yet, look for an honest service for your needs.

    Reply

  60. I highly advise stay away from this platform. The experience I had with it has been purely dismay along with doubts about deceptive behavior. Exercise extreme caution, or better yet, look for a trustworthy service to fulfill your requirements.

    Reply

Leave a Reply

Your email address will not be published. Required fields are marked *