Taiwanese Apple and Tesla supplier hit by Conti ransomware
Taiwanese electronics company Delta Electronics, a provider for Apple, Tesla, HP, and Dell disclosed that it was the victim of a cyberattack.
Delta claims to be the world’s largest provider of switching power supplies and reported sales of over $9 billion last year.
The company said the incident impacted only non-critical systems, which had no significant impact on its operations. AdvIntel “Andariel” platform detected the attack on January 18.
Delta has hired the services of third-party security experts to help with the investigation and recovery process. They are now working on restoring systems taken down during the attack.
They have also notified government law enforcement agencies to assist with the follow-up investigation.
Delta did not reveal who was behind the attack, but an undisclosed information security company found a Conti ransomware sample deployed on the company’s network, as CTWANT first reported.
According to negotiations between Conti and Delta, the Conti operators claim to have encrypted 1,500 servers and 12,000 computers out of roughly 65,000 devices on Delta’s network.
The Conti ransomware gang demanded a payment of $15 million ransom for a decryptor and stop leaking files stolen from its network.
While Delta is still reportedly working with Trend and Microsoft’s security teams to investigate the incident and claims that its production has not been affected, its website is still down one week after the attack.
Delta’s customers can use their alternate domain until the company brings back online its main website.
Conti is a Ransomware-as-a-Service (RaaS) operation linked to the Russian-speaking Wizard Spider cybercrime group.
The post Taiwanese Apple and Tesla supplier hit by Conti ransomware first appeared on Cybersafe News.