Vanuatu ransomware attack claimed by RansomHouse

As previously reported, the South Pacific archipelago Vanuatu announced in early November that they had been hit with a ransomware attack that pretty much stranded the islands. Almost one month later, the islands had not recovered.

On December 24, RansomHouse threat actors added the government of Vanuatu to their leak site, claiming to have locked them on October 6 and exfiltrated 3.2 TB of files. A proof pack includes files that do appear to be consistent with government files. The evidence pack did not include particularly personal or sensitive files.

RansomHouse lists Vanuatu as a victim and claims to have exxfiltrated 3.2 TB of data. — *The threat actors claim they locked files on October 6.*

There is no indication as to what the ransom amount might be or whether there have been any negotiations, and DataBreaches could find no update on the government’s web site as of the time of publication.

PowerSchool commits to strengthened breach measures following engagement with the Privacy Commissioner of Canada
Hungarian police arrest suspect in cyberattacks on independent media
Two more entities have folded after ransomware attacks
British institutions to be banned from paying ransoms to Russian hackers
Data breach feared after cyberattack on AMEOS hospitals in Germany
Inquiry launched after identities of SAS soldiers leaked in fresh data breach

Related: