Hackers hunt for gold: Cybercrime group Clop hacks into Barrick Gold
The mountains of gold are under threat.
Canada’s largest gold mining company, Barrick Gold Corp. became the victim of a large-scale data theft organized by the shadowy cybercriminal group Clop. The incident affected hundreds of corporations and nearly 20 million people around the world.
As it became known, Barrick Gold Corp. is among at least 376 organizations reported by Clop. Victims include financial institutions, medical organizations, US government agencies and Canadian municipalities.
In operation since at least 2020, the Clop group has traditionally used software to encrypt company or individual files, after which they demanded a ransom to decrypt the information. However, the latest incident, which occurred at the end of May, is related to the massive theft of data from the file sharing system. MOVEit , owned by Progress Software Corp. from Massachusetts. The problem was a “zero-day” vulnerability in the software for which there was no fix at the time.
Clop publishes the names of companies affected by its actions in the dark corners of the Internet. The group’s method of operation is to demand a ransom in exchange for non-disclosure of data or to sell it to a third party. The group is also known for its brazenness, denouncing victim companies for weak cyber defense systems.
Barrick did not disclose the aftermath of the attack, without specifying what data was stolen or even confirming the attack itself. “Unfortunately, we do not comment on issues related to cybersecurity,” Barrick spokeswoman Cathy du Plessis wrote in a letter.