Edition Bleeping Computer reports that the Israeli company Habana Labs, which develops solutions in the field of AI, since 2019 owned by the Intel, was attacked by malware Pay2Key.
According to the onion site of the criminals, during the attack, they were able to steal about 53 GB of data from Habana Labs, including business documentation, source codes, information about the Windows domain account, information about the domain’s DNS zone, as well as files related to Gerrit.
Criminals write that Habana Labs has “72 hours to stop the leak.” At the same time, it is not known what requirements the attackers made to the company. Journalists believe that this attack may not be aimed at obtaining financial benefits, but should harm Israel’s interests.
Pay2Key ransomware is a relatively new threat, which experts from Check Point and Profero spoke about in November 2020 . Recently, malware operators have already noticed a number of attacks on Israeli businesses, and Profero believes that Iranian attackers may be behind Pay2Key. The researchers came to this conclusion by tracing the movement of funds in the group’s wallets to Iranian cryptocurrency exchanges.
According to Check Point, on average, Pay2Key operators demand from the affected companies from 7 to 9 bitcoins as a ransom, that is, approximately 135-173 thousand dollars at the current rate.