A cyberattack targeting a local advertising agency has raised fresh concerns over the rise in ransomware cases globally. Hackers breached the company’s server, stole sensitive data, and demanded a large ransom in Bitcoin to prevent its destruction or public exposure.
Attack Discovered Through Server Login Issues
Police officials reported that the incident came to light on May 3, when employees of the agency experienced difficulties accessing the company’s servers. Upon attempting to reset the server passwords, they noticed a significant amount of missing data.
The company hired third-party IT experts to investigate. During their assessment, they found a text file left by the hackers, which explained how the breach occurred and outlined their demands.
Hackers Leave Ransom Note
The hackers claimed in the note that weak security allowed them to access the servers. They demanded a large Bitcoin payment to avoid permanent deletion or damage to the stolen files. They warned the company not to try recovering or deleting any data, threatening to destroy the stolen files or leak them online if their demands were ignored.
The note also stated that this was a one-time offer. Interestingly, the hackers offered to give the company security tips once the ransom was paid.
Police Investigate Under Cybercrime Laws
The cyberattack was reported by 33-year-old Pranay Ramaiyaa, an employee of the agency and a resident of Thane. Police have registered a case against unknown individuals under multiple sections of the Information Technology Act, including sections 43, 65, and 66, and under section 308 of the Bharatiya Nyaya Sanhita, which relates to extortion.
Cybersecurity experts hired by the agency said the hackers used a brute force attack to access the server. This method involves repeated attempts to guess passwords until one works.
Ransom-Related Crypto Crimes on the Rise
This case adds to a growing list of crypto-related crimes. In one recent incident, the father of a cryptocurrency millionaire was kidnapped and mutilated to pressure his son into paying a ransom in digital assets.
Another high-profile case involved crypto investor John Woeltz, who reportedly held a tourist captive for weeks to force him to reveal account passwords. The victim, a former business partner of Woeltz, claimed he was injured and photographed as a means of intimidation and blackmail.
Police continue to investigate the current case while urging companies to improve their cybersecurity defenses against increasingly sophisticated threats.
