- ShinyHunters threatens ZenBusiness with deadline to disclose stolen data
- The group likely accessed the company’s internal files via vishing and platform compromise
- ZenBusiness joins the long list of ShinyHunters victims, including Infinite Campus, Telus and Crunchyroll
Infamous ShinyHunters ransomware actors have given ZenBusiness a “final warning” before releasing terabytes of stolen data.
Cybernews reported that ShinyHunters added ZenBusiness to its data leak site and gave a deadline of March 25 to receive a ransom or leak data and create “several annoying (digital) problems” for the company.
ZenBusiness is a US-based platform that helps entrepreneurs launch and run small businesses, offering LLC formation, compliance, and back-office tools. Its clients include freelancers, startups and small business owners, and its annual revenue is estimated at $75 million.
Article continues below
Blunt the competitive blade
Over the past year, ShinyHunters has been an incredibly active threat actor. Security researchers said the group often engaged in vishing (voice phishing), calling employees of target companies and impersonating IT security personnel.
During these calls, they request remote access to their targets’ devices, in order to “fix a problem” or triage a 2FA issue.
After gaining access, they often access different platforms such as Salesforce or Snowflake, through which they can exfiltrate sensitive data and then extort money from victims. Although neither party has confirmed the nature of the stolen data, security researchers at Cybernews said the files were “probably internal company data.”
“The pirates […] could potentially reveal information about customers or employees such as personal information, the type of businesses created with the platform,” the researchers said in a press release shared with TechRadar Pro.” The breach could also expose the company’s internal operations, which could reduce ZenBusiness’ competitive advantage.
ZenBusiness is just the next in a long line of ShinyHunters victims. Just two days ago it was reported that 11 million people were affected after the group stole files from Infinite Campus, and before that it included Telus Digital, Wynn Resorts, Crunchyroll and many others.
Follow TechRadar on Google News And add us as your favorite source to get our news, reviews and expert opinions in your feeds. Make sure to click the Follow button!
And of course you can too follow TechRadar on TikTok for news, reviews, unboxings in video form and receive regular updates from us on WhatsApp Also.