Just after publishing press releases which included data leak of Grubman Shire Meiselas & Sacks and email conversations involving Donald Trump in them. Now they have hacked and encrypted the FARO technologies network which is one of the well-known and trusted source of 3D measurement, imaging, and realization technology.
FARO technologies were founded in the year 1981. From then the company develops and manufactures leading-edge solutions that enable high-precision 3D capture, measurement, and analysis across a variety of industries including manufacturing, construction, engineering, and public safety. FARO’s global headquarters are located in Lake Mary, Florida. The Company also has a technology center and manufacturing facility consisting of approximately 90,400 square feet located in Exton, Pennsylvania containing research and development, manufacturing, and service operations of our FARO Laser Tracker™ product lines. The Company’s European regional headquarters is located in Stuttgart, Germany, and its Asia Pacific regional headquarters is located in Singapore. FARO has other offices in the United States, Canada, Mexico, Brazil, Germany, the United Kingdom, France, Spain, Italy, Poland, Turkey, the Netherlands, Switzerland, India, China, Malaysia, Thailand, South Korea, Australia, and Japan.
Below is the message posted by the REvil ransomware operators on their blog-:
As per the Cyble Research Team, the REvil ransomware operators claim to have several terabytes of the company’s highly sensitive data and documents. As per now, they have only leaked the snapshot proving they have got hold of their data. At last REvil operators have also mentioned that if the company does not agree to their terms within the next 24 hours then FARO technologies entire data would be leaked online. Below is the snapshot of a few of the folders containing the company’s data.
Update: On May 22, 2020, the group leaked the data (around 1.5TB) as below:
This part of the data leak includes a large bunch of sensitive and confidential data and documents of the organisation such as invoices, project plans, employee details, import and export documents, company’s patents, and many more. Below are few snapshots of the sensitive documents from the large data leak.
About Cyble:
Cyble Inc.’s mission is to provide organizations with a real-time view of their supply chain cyber threats and risks. Their SaaS-based solution powered by machine learning and human analysis provides organizations’ insights to cyber threats introduced by suppliers and enables them to respond to them faster and more efficiently.
Cyble strives to be a reliable partner/facilitator to its clients allowing them with unprecedented security scoring of suppliers through cyber intelligence sourced from open and closed channels such as OSINT, the dark web, and deep web monitoring and passive scanning of internet presence. Furthermore, the intelligence clubbed with machine learning capabilities fused with human analysis also allows clients to gain real-time cyber threat intel and help build better and stronger resilience to cyber breaches and hacks. Due to the nature of the collected data, the company also offer threat intelligence capabilities out-of-box to their subscribers.