There is something to give cold sweats to the whole music industry. A group of hackers called "REvil" has been claiming for several days that they had siphoned off the files and files of the New York law firm Grubman Shire Meiselas & Sacks (GSM Law).
The company acknowledged the ransomware attack, which encrypted its servers, and the theft of its precious data. It has informed its prestigious customers as well as its employees, according to Variety.
GMS Law specializes in the legal affairs of celebrities and entertainment heavyweights. The list of her clients makes you dizzy: Lady Gaga, Madonna, U2, Nicki Minaj, Bruce Springsteen, Mary J. Blige, Christina Aguilera and Mariah Carey.
The lawyers of the firm also take care of negotiating the contracts of companies like Sony, Facebook, Playboy or Samsung, and sometimes defending them in court.
Confidential documents in nature
By infiltrating the computer system and after paralyzing it, hackers claim to have recovered 756 GB of data including hundreds of thousands of contracts, confidential agreements and personal information from customers.
As a warning shot, the hackers published evidence of their plans on an anonymous Dark Web forum, including an excerpt from Madonna's contract for her last “Madame X” tour or a confidentiality agreement signed by Christina Aguilera.
“REvil always starts by publishing a very small extract from the stolen data. They are mostly screenshots of the files at their disposal, just to prove to the targeted company that they are not kidding, as proof of life during a kidnapping, "analyzes Brett Callow, of l cybersecurity company Emsisoft, which had access to the hackers forum.
Newsletter - The essentials of the news
Every morning, the news seen by Le ParisienI'm registering
Your email address is collected by Le Parisien to allow you to receive our news and commercial offers. Find out more
They promise to broadcast a first Gigabyte of data soon before going to 100 GB in an attempt to build up pressure. Unless GSM Law pays a large sum of Bitcoins as a ransom.
The amount requested has not been filtered, but cybercriminals are rational individuals who always demand a sum that the company can afford to spend to absorb the shock.