Here the REvil ransomware operators come up with one more data leak. In this instance, they targeted Elexon who is known for Delivering the Balancing and Settlement Code (BSC).

ELEXON plays a vital role at the heart of the wholesale electricity market. They compare how much electricity generators and suppliers said they would produce or consume with how much electricity they actually generated and supplied. After calculating these volumes, we work out a price for the imbalances and charge organisations accordingly. This involves taking 1.2 million-meter readings every day and handling over £1.5 billion of our customers’ funds each year. These balancing and settling arrangements are laid down in the Balancing and Settlement Code (BSC), which is administered by ELEXON. In March 2001, the Balancing and Settlement Code (BSC), was launched as part of NETA (New Electricity Trading arrangements). ELEXON administers the Code on behalf of the UK electricity industry. The Balancing and Settlement Code is governed by the BSC Panel and its committees and industry groups. They meet to fulfill the duties of the BSC and discuss issues around day to day operations. This includes how changes to the BSC itself, Code Subsidiary Documents, and BSC Systems are developed, assessed and implemented. 

The ransomware operators have posted a list of files highly sensitive and confidential fThe ransomware operators have posted a list of files highly sensitive and confidential files and data of the company. The Cyble Research Team has identified and verified the data leak which includes snapshots of user’s passports, enterprise renewal application forms, enterprises analysis data, and much more. As per the Cyble Research Team, the data breach attack had taken place on 14 May 2020, and it seems that as the company could not make an agreement with the ransomware operators which lead to the data leak of their database.

Below are few snapshots from the large lot being leaked by the REvil ransomware operators-:

About Cyble:

Cyble is a US-based cyber threat intelligence company with the express mission to provide organizations with real-time views of their supply chain cyber threats and risks.