Saudi Aramco confirms data breach following demand for $50m cyber ransom

Data leak
(Image credit: Shutterstock/dalebor)

Saudi Aramco has admitted to indirectly leaking sizable amounts of data pilfered from one of its third-party contractors in a cyberattack, which surprisingly doesn’t appear to involve the use of malware like ransomware.

In an emailed statement to the Financial Times, the world’s largest oil producer confirmed a breach had occured earlier this week, but added the incident did not originate on its computers, and has had no impact on their operations. 

The statement comes after cybersecurity experts noticed a dark web post claiming to offer one terabyte of Saudi Aramco data. The poster reportedly claimed to possess information on the location of oil refineries, as well as payroll files and confidential client and employee data.

TechRadar needs you!

We're looking at how our readers use VPNs with streaming sites like Netflix so we can improve our content and offer better advice. This survey won't take more than 60 seconds of your time, and you can also choose to enter the prize draw to win a $100 Amazon voucher or one of five 1-year ExpressVPN subscriptions.

>> Click here to start the survey in a new window <<

Interestingly, while it is currently unclear who was behind the leak, according to reports, the attack on the unidentified contractor doesn’t appear to be part of a typical ransomware campaign. 

Smash and grab

Experts noted that the seller who posted the exfiltrated data on the dark web did not mention affiliation with any ransomware operator, even as they demanded $50 million in cryptocurrency to delete the data.

Security experts have foretold of an increase in cyberattacks on critical utilities and infrastructure following the successful campaign against the US-based Colonial Pipeline, prompting the country to spend billions to revitalize its security initiatives.

It isn’t clear whether Saudi Aramco or its contractor heeded the extortion demands, but since there’s no indication of any data being encrypted in the attack, the primary concern would have been to keep the information away from its competitors.

Via Financial Times

TOPICS
Mayank Sharma

With almost two decades of writing and reporting on Linux, Mayank Sharma would like everyone to think he’s TechRadar Pro’s expert on the topic. Of course, he’s just as interested in other computing topics, particularly cybersecurity, cloud, containers, and coding.

Read more
sewage water treatment
Southern Water denies claims it offered $750,000 ransom to ransomware hackers
Ransomware
Atos now says its systems weren't hit by a ransomware attack after all
Oracle
Oracle denies data breach after hacker claims to hold six million records
A laptop with a red screen with a white skull on it with the message: &quot;RANSOMWARE. All your files are encrypted.&quot;
Major ransomware attack sees Tata Technologies hit - 1.4TB dataset with over 730,000 files allegedly stolen
ransomware avast
Engineering giant ENGlobal confirms hackers hit internal data
A group of 7 hackers, 6 slightly blurred in the background and one in the foreground, all wearing black with hoods pulled up over their heads. You cannot see their faces. The hacker in the foreground sits with an open laptop in front of them. The background, behind the hackers, is a Chinese flag
China government-linked hackers caught running a seriously dangerous ransomware scam
Latest in Security
Isometric demonstrating multi-factor authentication using a mobile device.
NCSC gets influencers to sing the praises of 2FA
Sam Altman and OpenAI
OpenAI is upping its bug bounty rewards as security worries rise
A stylized depiction of a padlocked WiFi symbol sitting in the centre of an interlocking vault.
Dangerous new CoffeeLoader malware executes on your GPU to get past security tools
China
Notorious Chinese hackers FamousSparrow allegedly target US financial firms
A digital representation of a lock
NYU website defaced as hacker leaks info on a million students
NHS
NHS IT supplier hit with major fine following ransomware attack
Latest in News
Nintendo Switch 2 Joy-Con up-close from app store
Nintendo's new app gave us another look at the Switch 2, and there's something different with the Joy-Con
cheap Nintendo Switch game deals sales
Nintendo didn't anticipate that Mario Kart 8 Deluxe was 'going to be the juggernaut' for the Nintendo Switch when it was ported to the console, according to former employees
Three angles of the Apple MacBook Air 15-inch M4 laptop above a desk
Apple MacBook Air 15-inch (M4) review roundup – should you buy Apple's new lightweight laptop?
Witchbrook
Witchbrook, the life-sim I've been waiting years for, finally has a release window and it's sooner than you think
Close up of Leica M11-P viewfinder
I wince at the prospect of the rumored Leica M11-V – here's why
Amazon Echo Smart Speaker
Amazon is experimenting with renaming Echo speakers to Alexa speakers, and it's about time