Trending

ee-track">
Link copied!

Ragnar Ransomware Operators Targets GST Autoleather Company, a Leading Producer of Global Automotive Leather

Ragnar ransomware operators execute a data breach attack, in which they leaked the data of GST Autoleather Company. GST Autoleather Company was being established in the year 1832. With a combined heritage of servicing the…

April 30, 2020 · 2 min read
Ragnar Ransomware Operators Targets GST Autoleather Company, a Leading Producer of Global Automotive Leather

Ragnar ransomware operators execute a data breach attack, in which they leaked the data of GST Autoleather Company.

GST Autoleather Company was being established in the year 1832. With a combined heritage of servicing the auto industry for over 200 years (GST, Seton, CUINBA), their passion remains strong and focused on future growth opportunities. Their associates at GST and Seton Autoleather are poised to earn and hold our position as the #1 automotive leather company in the world. Innovation. Efficiency. Value. All are core beliefs GST Autoleather strives to achieve in our day-to-day operations. GST functions as a designer, developer, and integrator of automotive leather interior trim products. They offer unsurpassed value and aggressively market our products to the North American, European, South African, and Asia Pacific interior systems integrators, vehicle manufacturers, and strategic Tier suppliers. They tend to never lose sight of our core values and will conduct ourselves with the highest level of professionalism and ethics.

Based on the information leaked, it appears the negotiation between the ransomware operators and GST Autoleather failed, which lead to this leak. As per now, the ransomware operators tend to have just leak a few of the files from a large lot of over 1TB of data. This data leak seems to be a warning for the company to accept the terms of the ransomware operators. Below is the snapshot of message being posted by the ransomware operators-:

image 10

image 11

The Cyble Research Team has verified the data leak. The data leak includes multiple sensitive and financial data such as company’s sales report, customers information, financial reports, confidential investigation reports, and many more. Below is the snapshot of few files from the lot being leaked by the Ragnar ransomware operators.

image 12
Investigation Report
image 13
Snapshot of Customer’s Details
image 14
SQL Database files .mdf

About Cyble:

Cyble Inc.’s mission is to provide organizations with a real-time view of their supply chain cyber threats and risks. Their SaaS-based solution powered by machine learning and human analysis provides organizations’ insights to cyber threats introduced by suppliers and enables them to respond to them faster and more efficiently.

report-ad-banner

Cyble strives to be a reliable partner/facilitator to its clients allowing them with unprecedented security scoring of suppliers through cyber intelligence sourced from open and closed channels such as OSINT, the dark web and deep web monitoring and passive scanning of internet presence. Furthermore, the intelligence clubbed with machine learning capabilities fused with human analysis also allows clients to gain real-time cyber threat intel and help build better and stronger resilience to cyber breaches and hacks. Due to the nature of the collected data, the company also offer threat intelligence capabilities out-of-box to their subscribers.

AI Threat Intelligence

Stop Executive Threats
Before They Strike

Monitor dark web chatter, detect lookalike domains, and protect your C-suite from targeted impersonation — in real time, across 50+ countries.

Scroll to Top

Book your session

Request a Personalized Demo

See how Cyble's threat intelligence protects your organization. A specialist will reach out within one business day.

Select one or more options

Cyble protects your personal data to manage your account and deliver requested content. Submit your details to receive updates. Withdraw consent anytime. See our privacy policy for details.

Your information is encrypted and never shared.
SOC 2 Type II GDPR compliant Trusted by 1,000+ teams

Download the brochure

Get the Cyble Vision Brochure

Explore how Cyble Vision delivers AI-powered threat intelligence across your attack surface. Fill in your details to access the brochure.

Select one or more options

Cyble protects your personal data to manage your account and deliver requested content. Submit your details to receive updates. Withdraw consent anytime. See our privacy policy for details.

Your information is encrypted and never shared.
SOC 2 Type II GDPR compliant Trusted by 1,000+ teams