AlphV Alleges an Attack Prior to Informing the Victim: What Are the Potential Outcomes? (1)
Well, would you look at that? Our old mate AlphV (or as some folks refer to him, BlackCat) is up to his old tricks again. Only this time, he’s added a new spin to his game.
So here’s the lowdown. AlphV seems to have an unusual strategy this time around. He’s taking the audacious route of naming his targets before he’s even bothered to reach out to them. How’s that for shocking chutzpah! He hasn’t even provided a shred of evidence supporting his claims. Now, why would he go about it this way, you ask?
Well, it appears AlphV has done his homework. He’s singled out a company called Tipalti which, if words don’t deceive us, dabbles in all things numeric, like accounts payable, procurement, and global payments automation. Oh, and they’ve got an amiable client named Roblox who, incidentally, also seems to be in AlphV’s crosshairs. Another entity called Twitch is similarly marked for attention.
In a posting, AlphV claims he’s pulled off a Houdini act, lurking away in Tipalti’s systems, unseen and undisturbed since the 8th of September, 2023. He boasts, saying he’s siphoned off a whopping 265GB+ of their confidential data, compromising not just the company but also its employees and clients. To add more drama to the mix, he’s even thrown in the likelihood of an inside job.
For all we know, this “invisible man act” could all be an elaborate ruse! It might just be a sly attempt to sow seeds of doubt among the company’s ranks. But apologies if we’re not immediately convinced by AlphV’s tall tale.
Plus, if you think that’s all, you’d be wrong. AlphV, the notorious cyber magician he is, has also sprinkled in a scholarly reference. He has cited an academic study about the potential benefits of paying a ransom. Whether this is to justify his deeds or for a bit of self-amusement, we wouldn’t really know. However, it sure does add color to an already riveting narrative.
Now, we did get in touch with Tipalti to hear their side of the story. Unfortunately, we’re yet to receive any response. For now, might we advise holding your horses before getting worked up over AlphV’s claims which are unconfirmed at this point?
An update just coming in! While we’re still waiting for that response from Tipalti, we found an interesting bit from an Israeli news outlet. Here, a representative from Tipalti supposedly responded saying that they were aware of the allegations and were investigating. They affirmed their dedication to the security of their customer’s information and denied any detected data loss or system breach.
Well, that certainly adds a new layer to this digital cloak-and-dagger tale, doesn’t it? We guess it’s just another day in the realms of cybersecurity. As they say, it’s all fun and games until someone loses their data!
by Parker Bytes