{"id":1827,"date":"2021-07-18T11:29:32","date_gmt":"2021-07-18T11:29:32","guid":{"rendered":"https:\/\/www.attack-secure.com\/?p=1827"},"modified":"2023-01-09T11:16:49","modified_gmt":"2023-01-09T11:16:49","slug":"ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data","status":"publish","type":"post","link":"https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/","title":{"rendered":"RansomEXX ransomware hits Ecuador&#8217;s CNT and steals 190 GB of corporate data"},"content":{"rendered":"\n<p><strong><em>RansomEXX ransomware hits Ecuador&#8217;s CNT and steals 190 GB of corporate data<\/em><\/strong><\/p>\n\n\n\n<p>The Coporacion Nacional de Telecommunicacion (CNT) of Ecuador has been a victim of a ransomware attack and it has affected their normal business operations, their payments portal and support services have also been impacted. Earlier this week, the CNT site broadcasted warning messages that their organization has been affected by a cyberattack, and their services aren&#8217;t accessible now.<\/p>\n\n\n\n<p><strong>The alert message displayed on their site was:<\/strong><\/p>\n\n\n\n<p>&#8220;Today, July 16, 2021, the National Telecommunications Corporation, CNT EP, filed a complaint with the State Attorney General&#8217;s Office for the crime of \u201cattack on computer systems &#8220;so that the preliminary investigation is carried out and the responsible,&#8221;&nbsp;<\/p>\n\n\n\n<p>&#8220;This attack affected the care processes in our Integrated Service Centers and Contact Center; In this regard, we indicate to our users that their services will not be suspended for non-payment.&#8221;<\/p>\n\n\n\n<p>&#8220;We must inform our clients, massive and corporate, that their data is They are duly protected. We also inform that services such as calls, internet and television, operate normally.&#8221;<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/lh5.googleusercontent.com\/066kAnjiedtCxZTmfyQPyg6TqlozB_Ey3urAXvSIh9WcoqcsPKNJEZ1GC0bUNk7tEs1dTysp9H3UTQCKnVdT0JmuUcrMeNMalTzcpP9jNlbaupi6cAmuf803shWVsWMLu1bKHDI\" alt=\"\"\/><\/figure>\n\n\n\n<h2 class=\"wp-block-heading\"><strong>RansomEXX ransomware and CNT story<\/strong><\/h2>\n\n\n\n<p>Although CNT stated that they suffered a cyber attack they didn&#8217;t state it to be a ransomware attack, however, it has been known to be a ransomware attack by a group called RansomEXX as reported by the security researcher <a href=\"https:\/\/twitter.com\/1ZRR4H\">German Frenandez<\/a>, sharing the data leak site that has warned the CNT of the stolen data.&nbsp; But this link hasn&#8217;t been made public yet.&nbsp;<\/p>\n\n\n\n<p><strong>Below is the warning message shared by the RansomEXX group,<\/strong><\/p>\n\n\n\n<blockquote class=\"wp-block-quote\"><p>&#8220;Your time is LIMITED! When this time will come to end, there are two ways: we will RAISE the ransom amount or PUBLISH your files.You will lose the opportunity to contact us after the data PUBLICATION. If you REALLY WANT to prevent data leak, contact us RIGHT NOW. We have downloaded 190GB+ of your files and we are ready to publish it.&#8221; &#8211; RansomEXX.<\/p><\/blockquote>\n\n\n\n<p>This link is available only via direct access and not made public yet, which we believe is because it was available via the ransom note shared above.<\/p>\n\n\n\n<p>CNT has made a press statement, which states that the customer and corporate information are safe and secured. However, on the other hand, RansomEXX have claimed that they own 190+ GB of CNT data and even shared some screenshots as proof of their claims. These proofs include the hidden data leakage behind CNT official info and this is directly contradicting with CNT&#8217;s press statement. These stolen data seems to include contact details, contracts and other logs of CNT.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/lh4.googleusercontent.com\/08KComAJ5nBDrZV1LDxS9CfCKTrbNM4qO3VFFIaWn9Bv9--rsI8nA3WpPdh5_aquqAjmp1WJAjvwtjdcyp6C7YwNJV94Yc9317JELUWcGf5VRiorkLhfBibWZ1X_tOSKxaVgARo\" alt=\"\"\/><\/figure>\n\n\n\n<h2 class=\"wp-block-heading\"><strong>R<\/strong><strong>ansomEXX and its history<\/strong><\/h2>\n\n\n\n<p>This ransomware group has been attacking high-profile organizations recently, which includes Rio Grande do Sul court system, world&#8217;s largest meat producer JBS and nuclear weapons contractor Sol Oriens.&nbsp; Initially known as Defray in 2018, this ransomware group became very active since June 2020 after rebranding itself to RansomEXX and targeting premium enterprises.<\/p>\n\n\n\n<p>This group has also affected Brazil&#8217;s government entities, Texas Department of Transport and Tyler Technologies with their RansomEXX ransomware attack.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><strong>How does RansomEXX ransomware actors operate?<\/strong><\/h2>\n\n\n\n<p>Like any ransomware operators, RansomEXX will first breach into a network using stolen credentials, brute-force, password spraying, credential stuffing and other password breaching attacks. And then they try to exploits or vulnerabilities in the network components for further compromise and later gain access to the network.&nbsp;<\/p>\n\n\n\n<p>As soon as the get the access to the network, they will try to spread laterally withing the network using RDP and open ports. Once they doing that they will start encrypting the files in individual devices by deploying the ransomware and also holding access to administrator password. With admin passwords they can corrupt system files and even cause havoc to more than just corporate data.<\/p>\n\n\n\n<p>These ransomware operators wanted to target all the crucial devices and hence created the Linux versions and not limit themselves to Windows devices. This way they can target Linux servers including hypervisors and VMs.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><strong>How should enterprises keep their network vigilant against such threat actors?<\/strong><\/h2>\n\n\n\n<p>Enterprises should start to take a proactive security approach to keep their network a less favorite target for ransomware operators.&nbsp;<\/p>\n\n\n\n<p>They should follow the below best practices to ensure their network defenses are solid enough to keep ransomware out of their business operations,&nbsp;<\/p>\n\n\n\n<ul><li>Always patch and update your system on-time<\/li><li>Ensure your phishing defenses are solid, you can use tools like Graphus, Huntress, and Cyberhawk to keep your email communications secured.<\/li><li>Verify your open ports, services and security misconfigurations in your network are identified and resolved.&nbsp;<\/li><li>Always backups your data periodically, and probably use the 3-2-1 rule of backups to have three copies of data backups, in two different formats and at least one outside your geographical location.&nbsp;<\/li><li>Your backups and disaster recovery plans should be verified and optimized on a mundane basis for healthy and secured data.<\/li><li>Always follow the Zero Trust Model to keep your networks safe from unknown breaches via known devices.<\/li><\/ul>\n\n\n\n<p>While you work on the proactive side of security, it is equally important to build a reactive approach to ensure you know how to handle security incidents<\/p>\n\n\n\n<ul><li>Always have a SIEM tool for first information on a security incident<\/li><li>Studying enterprise logs will help security team to pick a threat that;&#8217;s actively exploiting your corporate network.<\/li><li>Have an incident response plan in place to detect the attack, intimate authorities, and communicate the same to customers as per data breach regulation norms that applies to your business and country it belongs to. For example, if you are in Europe then GDPR will apply to you.<\/li><li>Perform Red and Blue Team operations to identify vulnerable data points in your network and reinforce it using the right policies and configurations.<\/li><li>Identity Access Management and Password Management with the right honeypot enabled environment can reduce and intimate your security professionals about any attack attempts at your corporate network.<\/li><\/ul>\n\n\n\n<p>Enterprises need to ensure they understand the importance of cybersecurity and has to be communicated to the stakeholders, employees and customers periodically with right security training and assessment for employees to avoid becoming a victim to phishing attempts and other malicious internet activity.&nbsp;<\/p>\n\n\n\n<p>The case of CNT is just another story for us, but it is a critical incident for their organization and could potentially affect their operations, reputations and finances for the rest of this year. Build your defenses now and ensure you update them in periodic intervals to stay vigilant 24*7, keeping the attackers at bay.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>RansomEXX ransomware hits Ecuador&#8217;s CNT and steals 190 GB of corporate data The Coporacion Nacional de Telecommunicacion (CNT) of Ecuador [&hellip;]<\/p>\n","protected":false},"author":5,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_uag_custom_page_level_css":"","site-sidebar-layout":"no-sidebar","site-content-layout":"default","ast-site-content-layout":"","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","theme-transparent-header-meta":"default","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-gradient":""}},"footnotes":""},"categories":[1],"tags":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v22.4 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>RansomEXX ransomware hits Ecuador&#039;s CNT and steals 190 GB of corporate data<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"RansomEXX ransomware hits Ecuador&#039;s CNT and steals 190 GB of corporate data\" \/>\n<meta property=\"og:description\" content=\"RansomEXX ransomware hits Ecuador&#8217;s CNT and steals 190 GB of corporate data The Coporacion Nacional de Telecommunicacion (CNT) of Ecuador [&hellip;]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/\" \/>\n<meta property=\"og:site_name\" content=\"Attack Secure\" \/>\n<meta property=\"article:published_time\" content=\"2021-07-18T11:29:32+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-01-09T11:16:49+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/lh5.googleusercontent.com\/066kAnjiedtCxZTmfyQPyg6TqlozB_Ey3urAXvSIh9WcoqcsPKNJEZ1GC0bUNk7tEs1dTysp9H3UTQCKnVdT0JmuUcrMeNMalTzcpP9jNlbaupi6cAmuf803shWVsWMLu1bKHDI\" \/>\n<meta name=\"author\" content=\"Isa Aliu\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Isa Aliu\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"6 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/\"},\"author\":{\"name\":\"Isa Aliu\",\"@id\":\"https:\/\/www.attack-secure.com\/#\/schema\/person\/def74576467d67533dbca8f91cb3790c\"},\"headline\":\"RansomEXX ransomware hits Ecuador&#8217;s CNT and steals 190 GB of corporate data\",\"datePublished\":\"2021-07-18T11:29:32+00:00\",\"dateModified\":\"2023-01-09T11:16:49+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/\"},\"wordCount\":1087,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/www.attack-secure.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/lh5.googleusercontent.com\/066kAnjiedtCxZTmfyQPyg6TqlozB_Ey3urAXvSIh9WcoqcsPKNJEZ1GC0bUNk7tEs1dTysp9H3UTQCKnVdT0JmuUcrMeNMalTzcpP9jNlbaupi6cAmuf803shWVsWMLu1bKHDI\",\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/\",\"url\":\"https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/\",\"name\":\"RansomEXX ransomware hits Ecuador's CNT and steals 190 GB of corporate data\",\"isPartOf\":{\"@id\":\"https:\/\/www.attack-secure.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/lh5.googleusercontent.com\/066kAnjiedtCxZTmfyQPyg6TqlozB_Ey3urAXvSIh9WcoqcsPKNJEZ1GC0bUNk7tEs1dTysp9H3UTQCKnVdT0JmuUcrMeNMalTzcpP9jNlbaupi6cAmuf803shWVsWMLu1bKHDI\",\"datePublished\":\"2021-07-18T11:29:32+00:00\",\"dateModified\":\"2023-01-09T11:16:49+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/#primaryimage\",\"url\":\"https:\/\/lh5.googleusercontent.com\/066kAnjiedtCxZTmfyQPyg6TqlozB_Ey3urAXvSIh9WcoqcsPKNJEZ1GC0bUNk7tEs1dTysp9H3UTQCKnVdT0JmuUcrMeNMalTzcpP9jNlbaupi6cAmuf803shWVsWMLu1bKHDI\",\"contentUrl\":\"https:\/\/lh5.googleusercontent.com\/066kAnjiedtCxZTmfyQPyg6TqlozB_Ey3urAXvSIh9WcoqcsPKNJEZ1GC0bUNk7tEs1dTysp9H3UTQCKnVdT0JmuUcrMeNMalTzcpP9jNlbaupi6cAmuf803shWVsWMLu1bKHDI\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.attack-secure.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"RansomEXX ransomware hits Ecuador&#8217;s CNT and steals 190 GB of corporate data\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.attack-secure.com\/#website\",\"url\":\"https:\/\/www.attack-secure.com\/\",\"name\":\"Attack Secure\",\"description\":\"Protecting you against cyber attacks!\",\"publisher\":{\"@id\":\"https:\/\/www.attack-secure.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.attack-secure.com\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.attack-secure.com\/#organization\",\"name\":\"TECHNUX SMC PVT LIMITED\",\"url\":\"https:\/\/www.attack-secure.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.attack-secure.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.attack-secure.com\/wp-content\/uploads\/2021\/01\/AttackSecure-1.png\",\"contentUrl\":\"https:\/\/www.attack-secure.com\/wp-content\/uploads\/2021\/01\/AttackSecure-1.png\",\"width\":471,\"height\":166,\"caption\":\"TECHNUX SMC PVT LIMITED\"},\"image\":{\"@id\":\"https:\/\/www.attack-secure.com\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.attack-secure.com\/#\/schema\/person\/def74576467d67533dbca8f91cb3790c\",\"name\":\"Isa Aliu\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.attack-secure.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/60233e8cca33021ffe2a985913ce95c6?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/60233e8cca33021ffe2a985913ce95c6?s=96&d=mm&r=g\",\"caption\":\"Isa Aliu\"},\"description\":\"Isa is a security and privacy advocate with more than 10 years of writing experience under his belt. He is extremely familiar when it comes to antivirus software, VPNs, password managers, and cloud storage services. He also holds a Bachelor of Arts (BA), English Literature With Creative Writing from the University of Newcastle. Apart from being a master with words, Isa is also known for his unique ability to break down the hardest and most complicated of concepts in the simplest of languages.\",\"url\":\"https:\/\/www.attack-secure.com\/author\/isa-aliu\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"RansomEXX ransomware hits Ecuador's CNT and steals 190 GB of corporate data","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/","og_locale":"en_US","og_type":"article","og_title":"RansomEXX ransomware hits Ecuador's CNT and steals 190 GB of corporate data","og_description":"RansomEXX ransomware hits Ecuador&#8217;s CNT and steals 190 GB of corporate data The Coporacion Nacional de Telecommunicacion (CNT) of Ecuador [&hellip;]","og_url":"https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/","og_site_name":"Attack Secure","article_published_time":"2021-07-18T11:29:32+00:00","article_modified_time":"2023-01-09T11:16:49+00:00","og_image":[{"url":"https:\/\/lh5.googleusercontent.com\/066kAnjiedtCxZTmfyQPyg6TqlozB_Ey3urAXvSIh9WcoqcsPKNJEZ1GC0bUNk7tEs1dTysp9H3UTQCKnVdT0JmuUcrMeNMalTzcpP9jNlbaupi6cAmuf803shWVsWMLu1bKHDI"}],"author":"Isa Aliu","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Isa Aliu","Est. reading time":"6 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/#article","isPartOf":{"@id":"https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/"},"author":{"name":"Isa Aliu","@id":"https:\/\/www.attack-secure.com\/#\/schema\/person\/def74576467d67533dbca8f91cb3790c"},"headline":"RansomEXX ransomware hits Ecuador&#8217;s CNT and steals 190 GB of corporate data","datePublished":"2021-07-18T11:29:32+00:00","dateModified":"2023-01-09T11:16:49+00:00","mainEntityOfPage":{"@id":"https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/"},"wordCount":1087,"commentCount":0,"publisher":{"@id":"https:\/\/www.attack-secure.com\/#organization"},"image":{"@id":"https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/#primaryimage"},"thumbnailUrl":"https:\/\/lh5.googleusercontent.com\/066kAnjiedtCxZTmfyQPyg6TqlozB_Ey3urAXvSIh9WcoqcsPKNJEZ1GC0bUNk7tEs1dTysp9H3UTQCKnVdT0JmuUcrMeNMalTzcpP9jNlbaupi6cAmuf803shWVsWMLu1bKHDI","inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/","url":"https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/","name":"RansomEXX ransomware hits Ecuador's CNT and steals 190 GB of corporate data","isPartOf":{"@id":"https:\/\/www.attack-secure.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/#primaryimage"},"image":{"@id":"https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/#primaryimage"},"thumbnailUrl":"https:\/\/lh5.googleusercontent.com\/066kAnjiedtCxZTmfyQPyg6TqlozB_Ey3urAXvSIh9WcoqcsPKNJEZ1GC0bUNk7tEs1dTysp9H3UTQCKnVdT0JmuUcrMeNMalTzcpP9jNlbaupi6cAmuf803shWVsWMLu1bKHDI","datePublished":"2021-07-18T11:29:32+00:00","dateModified":"2023-01-09T11:16:49+00:00","breadcrumb":{"@id":"https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/#primaryimage","url":"https:\/\/lh5.googleusercontent.com\/066kAnjiedtCxZTmfyQPyg6TqlozB_Ey3urAXvSIh9WcoqcsPKNJEZ1GC0bUNk7tEs1dTysp9H3UTQCKnVdT0JmuUcrMeNMalTzcpP9jNlbaupi6cAmuf803shWVsWMLu1bKHDI","contentUrl":"https:\/\/lh5.googleusercontent.com\/066kAnjiedtCxZTmfyQPyg6TqlozB_Ey3urAXvSIh9WcoqcsPKNJEZ1GC0bUNk7tEs1dTysp9H3UTQCKnVdT0JmuUcrMeNMalTzcpP9jNlbaupi6cAmuf803shWVsWMLu1bKHDI"},{"@type":"BreadcrumbList","@id":"https:\/\/www.attack-secure.com\/ransomexx-ransomware-hits-ecudaors-cnt-and-steals-190-gb-of-corporate-data\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.attack-secure.com\/"},{"@type":"ListItem","position":2,"name":"RansomEXX ransomware hits Ecuador&#8217;s CNT and steals 190 GB of corporate data"}]},{"@type":"WebSite","@id":"https:\/\/www.attack-secure.com\/#website","url":"https:\/\/www.attack-secure.com\/","name":"Attack Secure","description":"Protecting you against cyber attacks!","publisher":{"@id":"https:\/\/www.attack-secure.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.attack-secure.com\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.attack-secure.com\/#organization","name":"TECHNUX SMC PVT LIMITED","url":"https:\/\/www.attack-secure.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.attack-secure.com\/#\/schema\/logo\/image\/","url":"https:\/\/www.attack-secure.com\/wp-content\/uploads\/2021\/01\/AttackSecure-1.png","contentUrl":"https:\/\/www.attack-secure.com\/wp-content\/uploads\/2021\/01\/AttackSecure-1.png","width":471,"height":166,"caption":"TECHNUX SMC PVT LIMITED"},"image":{"@id":"https:\/\/www.attack-secure.com\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/www.attack-secure.com\/#\/schema\/person\/def74576467d67533dbca8f91cb3790c","name":"Isa Aliu","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.attack-secure.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/60233e8cca33021ffe2a985913ce95c6?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/60233e8cca33021ffe2a985913ce95c6?s=96&d=mm&r=g","caption":"Isa Aliu"},"description":"Isa is a security and privacy advocate with more than 10 years of writing experience under his belt. He is extremely familiar when it comes to antivirus software, VPNs, password managers, and cloud storage services. He also holds a Bachelor of Arts (BA), English Literature With Creative Writing from the University of Newcastle. Apart from being a master with words, Isa is also known for his unique ability to break down the hardest and most complicated of concepts in the simplest of languages.","url":"https:\/\/www.attack-secure.com\/author\/isa-aliu\/"}]}},"uagb_featured_image_src":{"full":false,"thumbnail":false,"medium":false,"medium_large":false,"large":false,"1536x1536":false,"2048x2048":false},"uagb_author_info":{"display_name":"Isa Aliu","author_link":"https:\/\/www.attack-secure.com\/author\/isa-aliu\/"},"uagb_comment_info":0,"uagb_excerpt":"RansomEXX ransomware hits Ecuador&#8217;s CNT and steals 190 GB of corporate data The Coporacion Nacional de Telecommunicacion (CNT) of Ecuador [&hellip;]","_links":{"self":[{"href":"https:\/\/www.attack-secure.com\/wp-json\/wp\/v2\/posts\/1827"}],"collection":[{"href":"https:\/\/www.attack-secure.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.attack-secure.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.attack-secure.com\/wp-json\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/www.attack-secure.com\/wp-json\/wp\/v2\/comments?post=1827"}],"version-history":[{"count":1,"href":"https:\/\/www.attack-secure.com\/wp-json\/wp\/v2\/posts\/1827\/revisions"}],"predecessor-version":[{"id":2200,"href":"https:\/\/www.attack-secure.com\/wp-json\/wp\/v2\/posts\/1827\/revisions\/2200"}],"wp:attachment":[{"href":"https:\/\/www.attack-secure.com\/wp-json\/wp\/v2\/media?parent=1827"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.attack-secure.com\/wp-json\/wp\/v2\/categories?post=1827"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.attack-secure.com\/wp-json\/wp\/v2\/tags?post=1827"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}