“Colt is being removed by Warlock Ransomware Group, they have been over a week, colt has been trying to cover it,” Beaumont wrote On Friday on Mastodon, 15 August. “CVE-2015-53770 was interacting with it as the possibility of entry via sharehelp.colt.net through it.” Buomont said that the group stole a few hundred gigabytes of customer data and documentation, posting a List of files With samples on a Russian Tor site.
“We have already seen this year that the telecom is particularly insecure for attacks, and I think this varacklack attack highlights some recurring issues that are beginning to look at telecommunications and large -scale network service providers,” said security strategists in Gabriel Hempl, XBim. “When you go down a service provider and support-layer services, this operating wave impact. Even though COLT claims that its” core network infrastructure “is still intact, hosting, porting and API services outage still disrupts customer trusts and downstream operations.”
Data for alleged sale
The Varackock Group has allegedly alleged alleged documents on the forum for sale. With the demand for a ransom of $ 200,000, they have provided the sample documents as proof, if the colt does not pay what can happen, raising the alarm on it.
The troves allegedly include financial records, pay data, customer contact details, internal communication and software development blueprint.
