Heimdal
Home > Cybersecurity News

ALPHV/BlackCat Ransomware Group Breach HTC Global Services

Credit Card Details, Email Addresses, and Confidential Company Documents Among Stolen Data.

Last updated on December 12, 2023

article featured image

Contents:

HTC Global Services, an IT services and business consulting organization, has admitted that it was the victim of a cyberattack following the ransomware group ALPHV’s publication of screenshots containing stolen data.

HTC has yet to make an official statement on its website, but it issued an announcement acknowledging the cyberattack on its X/Twitter page that reads:

HTC has experienced a cybersecurity incident. Our team has been actively investigating and addressing the situation to ensure the security and integrity of user data. We’ve enlisted cybersecurity experts and are working to resolve it. Your trust is our priority.

HTC Global Service (Source)

HTC Is Investigating the Incident

HTC’s team has been actively investigating the incident and addressing the situation to ensure the security and integrity of their users’ data. They are currently working with cybersecurity professionals to resolve the issue.

The announcement came after the notorious ALPHV (BlackCat) ransomware group listed HTC on their data leak site together with some screenshots of allegedly stolen data.

According to the screenshots, the leaked data includes passports, contact lists, emails, and other confidential documents of the company.

htc global alphv site

HTC Global Services Entry on ALPHV’s Site (Source)

Although little information is known about the cause of the breach, cybersecurity professional Kevin Beaumont has a theory. He believes that the company was breached through the Citrix Bleed vulnerability.

According to Beaumont, CareTech, one of HTC’s business units, operated a vulnerable Citrix Netscaler device, which was exploited by the ALPHV group for initial access to the company’s network.

htc alphv attack

Source

ALPHV/BlackCat is nowadays one of the most active threat groups around. Since its launch in November 2021, the group build an impressive roster of victims, including most recently MGM and Tipalti.

If you liked this article, follow us on LinkedIn, Twitter, Facebook, and Youtube for more cybersecurity news and topics.

Author Profile

Cristian Neagu

CONTENT EDITOR

linkedin icon

Cristian is a Content Editor & Creator at Heimdal®, where he developed a deep understanding of the digital threat landscape. His style resonates with both technical and non-technical readers, proof being in his skill of communicating cybersecurity norms effectively, in an easy-to-understand manner.

Related Articles

Tipalti Is Investigating Alleged Ransomware AttackMost Dangerous Ransomware Groups You Should Know AboutMGM Resorts Suspends IT Systems Following Cyber IncidentLocking Out Cybercriminals: Here’s How to Prevent Ransomware AttacksBlackCat Alphv RansomwareRansomware Explained. What It Is and How It WorksWhat Is a Data Breach and How to Prevent It

Leave a Reply

Your email address will not be published. Required fields are marked *

CHECK OUR SUITE OF 11 CYBERSECURITY SOLUTIONS

SEE MORE
linkedin
youtube
facebook
x

resources

company

newsletter

© 2024 Heimdal®

Vat No. 35802495, Vester Farimagsgade 1, 2 Sal, 1606 København V