As you may recall, Pitney Bowes suffered a ransomware attack from the Ryuk gang back in October 2019. There was some good news at the time in that customer data was safe after the ransomware incident. Even though 90% of fortune companies use their packaging services, the impact was mostly just a disruption to services. Not a good thing, but way better than it could have been.
Pitney Bowes Hacked This Year
As reported by ZDNet, Maze crew published evidence this week that they had successfully breached and encrypted the network. “The Maze crew provided proof of access in the form of 11 screenshots portraying directory listings from inside the company’s computer network.”
(Image from ZDNet)
A spokesperson stated, “We detected a security incident related to Maze ransomware. We are investigating the scope of the attack, specifically the type of data that had been accessed, which appears to be limited.”
Maze of Ransomware
Maze and Ryuk are both “human-operated”. This means there is some amount of human interaction required to remotely guide the malware in infecting a company’s network. This is different from malware such as Lockbit. Lockbit is primarily self-sufficient and will spread without the guiding hand of a human.
Once the Maze gang has issued a ransom they’ll post about it online. If a decryption ransom fee isn’t paid, then they’ll leak all of their victim’s sensitive data. While other hackers may run leak sites as well, Maze pioneered the strategy.
ZDNet’s article ends with the thing everyone is thinking, “Being the victim of a human-operated ransomware gang is bad enough, but getting hit by two different gangs raises serious questions.” We were hoping to see better security in 2020. However, the year has turned out to be somewhat challenging. You can expect a follow-up once there is more information about the Pitney Bowes situation.