UK-based telecommunications firm Colt Know-how Companies confirms that buyer documentation was stolen as Warlock ransomware gang auctions recordsdata.
The British telecommunications and community companies supplier beforehand disclosed it suffered an assault on August 12, however that is the primary time they confirmed knowledge had been stolen.
“A legal group has accessed sure recordsdata from our methods which will include info associated to our prospects and posted the doc titles on the darkish internet,” reads an up to date safety incident advisory on Colt’s web site.
“We perceive that that is regarding for you.”
“Prospects are in a position to request an inventory of filenames posted on the darkish internet from the devoted name centre.”
This assertion comes after the Warlock Group started promoting on the Ramp cybercrime discussion board what they declare is 1 million paperwork stolen from Colt. The paperwork are being bought for $200,000 and allegedly include monetary info, community structure knowledge, and buyer info.
Supply:Â KELA
BleepingComputer can verify that the Tox ID listed within the discussion board publish matches an ID utilized in earlier variations of the ransomware gang’s ransom notes.
The Warlock Group (aka Storm-2603) is a ransomware gang attributed to Chinese language menace actors who make the most of the leaked LockBit Home windows and Babuk VMware ESXi encryptors in assaults.
When the ransomware gang launched in March 2025, they used LockBit ransomware notes of their assaults, personalized to incorporate a Tox ID for ransom negotiations.
In June, the ransomware gang branded itself because the “Warlock Group,” with personalized ransom notes and darkish internet negotiation and knowledge leak websites.
Final month, Microsoft reported that the menace actors have been exploiting a SharePoint vulnerability to breach company networks and deploy ransomware.
In negotiations seen by BleepingComputer, the ransomware gang calls for ransom ranging between $450,000 and tens of millions of {dollars}.
46% of environments had passwords cracked, practically doubling from 25% final yr.
Get the Picus Blue Report 2025 now for a complete have a look at extra findings on prevention, detection, and knowledge exfiltration developments.
