Rostova Organization, working with the Vect ransomware group, claims to have breached Usha International Limited and listed corporate and employee databases for sale on a dark web forum after alleging the company refused to negotiate a $10,000 extortion demand. The actors say the compromise includes personal, financial, employment and Active Directory account details, including NT hashes and SIDs. #RostovaOrganization #Vect #UshaInternational #ActiveDirectory
Keypoints
- Rostova Organization and Vect claim to have breached Usha International and are selling the data for $10,000.
- The alleged leak contains extensive employee personal identifiers and demographic information.
- Contact and employment records such as addresses, emails, phone numbers, and employee IDs are included.
- Government IDs and financial details like Aadhar, PAN, and bank account numbers are reportedly exposed.
- Active Directory account details, including SamAccountName, NTHash, and SID, are listed among the compromised data.
Read More: https://dailydarkweb.net/usha-international-limited-data-breach-and-extortion-attack/