In the last few hours, cybercrime group Babuk has claimed a new attack on Orange Romania, claiming to have stolen 4.5 TB of confidential data, including email addresses, customer records, source code, internal documents, invoices, contracts, user and employee data, messages, credit card details and call logs.
Hackers threaten to publish 1 TB of data if the operator does not initiate negotiations with them.
However, Orange Romania representatives stated that, so far, they have not been contacted by potential attackers and have not received any requests for negotiation related to a possible cyber security incident.
The company’s experts, together with the specialists of the National Cyber Security Directorate (DNSC), analyzed the published file samples and found that the indicated link refers to the same archives exfiltrated in the cyber attack that recently took place on Orange Romania.
DNSC is monitoring the situation in collaboration with the Orange Group and will return with relevant information if necessary.
We remind you that, in February, Orange Romania was the victim of a cyber attack following which 6.7 GB of personal data belonging to customers and employees were stolen. Attackers compromised access data for an internal company application, which allowed sensitive information to be extracted.
In conclusion, although the Babuk group claims to have carried out a new attack on Orange Romania, the authorities and the company have not yet confirmed a recent incident, and the published data seems to come from the previous attack.
