Threat Actors Demand Ransom from NRA After Leaking Files On Dark Web

Exploit: Ransomware
Company: National Rifle Association (NRA)
Industry: Advocacy Group
Source: https://www.nbcnews.com/tech/security/cybercriminals-claim-hacked-nra-rcna3929

The ransomware group Grief, whom many cyber security experts believe to be the rebranded Evil Corp, have claimed responsibility for what appears to have been a ransomware attack on the National Rifle Association (NRA). After their declaration, Grief posted 13 files to their dark web site and have threatened the NRA with the release of more leaked files should a ransom demand not be paid.

The NRA is not discussing the details of the incident however, NBC News reported on files they viewed from the group’s site. The files appear to have been related to grant proposal forms and leaked minutes from a September 24 NRA teleconference meeting. Thus far, there doesn’t appear to be any mention of consumer PII or financial data loss within the compromised data. More details are expected to follow.