Chemical Distributor Brenntag Pays $4.4 Million To DarkSide

Share post:

Brenntag, a leading chemical distribution company based in Germany, paid $4.4 million to the DarkSide Ransomware gang after an attack in its North America division that enabled the attackers to encrypt devices on the network and steal unencrypted files.

The company is said to have paid the ransom in Bitcoin to get a decryptor for encrypted files and prevent hackers from publicly disseminating stolen data.

The ransomware group DarkSide claimed to have stolen 150 GB of data in their attack.

It initially demanded a ransom of 133.65 Bitcoin worth 7.5 million dollars. After negotiations, the ransom was reduced to 4.4 million dollars and settled by Brenntag on May 11.

DarkSide is a Ransomware-as-a-Service (RaaS) operation, in which Ransomware developers cooperate with third-party vendors, who then carry out the data breach.

Under this arrangement, the DarkSide core team earns 20-30% of the ransom payment, while the rest goes to the hackers who carried out the attack.

The DarkSide Affiliate claims to have gained access to the Brenntag network after purchasing stolen credentials.

This attack shows how important multifactor authentication is for all logins on a network and that all Remote Desktop Servers are behind a VPN.

Enforcement of this practice would have prevented hackers from gaining access to a private network and stealing data.

For more information, read the original story in BleepingComputer.

Featured Tech Jobs


Related articles

Cyber Security Today, April 24, 2024 – Good news/bad news in Mandiant report, UnitedHealth admits paying a ransomware gang, and more

This episode reports on the danger of using expired open-source packages, a tool used by a Russian hacking group and passw

Google Play introduces new biometric verification with a user warning

Google has recently announced updates to the biometric verification process for Google Play purchases, aiming to bolster security...

Cyber Security Today, Week in Review for week ending Friday April 19, 2024

On this episode Jen Ellis, co-chair of the Ransomware Task Force, talks about ways of fighting one of the biggest cyber threats to IT d

Cyber Security Today, April 19, 2024 – Police bust phishing rental platform, a nine-year old virus found on Ukrainian computers, and more

This episode reports on a threat actor targeting governments in the Middle East with a novel way of hiding malware is going international

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways