Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Ransomware

Australian Finance Company Refuses Hackers’ Ransom Demand

Latitude Financial said it had recently received a ransom threat from the group behind the cyberattack, which it was ignoring in line with government advice.

Australian firm Latitude Financial said Tuesday it refused to pay a ransom to hackers who stole millions of records in one of the country’s biggest data heists.

The consumer lending company, which offers loans and credit cards, said last month that hackers had stolen the personal records of around 14 million Australian and New Zealand customers.

Latitude Financial said it had recently received a ransom threat from the group behind the cyber attack, which it was ignoring in line with government advice.

“We will not reward criminal behavior, nor do we believe that paying a ransom will result in the return or destruction of the information that was stolen,” it said in a statement to the Australian Stock Exchange.

Paying the ransom “would only encourage further extortion attempts”, the company added, without detailing the hackers’ demands.

The stolen data includes 7.9 million Australian and New Zealand driving licenses and 53,000 passport numbers.

Another 6.1 million records dating back to at least 2005 with information such as names, addresses, telephone numbers and dates of birth were also stolen.

Home Affairs Minister Clare O’Neil, who has previously described predatory hackers as “scummy criminals”, said giving in to extortion “only fuels the ransomware business model”.

Advertisement. Scroll to continue reading.

“They commit to undertaking actions in return for payment, but so often re-victimize companies and individuals.”

In recent months, hackers have preyed on some of Australia’s biggest companies in a string of separate attacks that have put authorities on high alert.

Russian hackers were blamed for accessing millions of medical records at Medibank, Australia’s largest private health insurer, in an unsuccessful extortion attempt in November last year.

Telecom company Optus fell victim to a similarly massive data breach in September, during which the personal details of up to 9.8 million people were accessed.

Written By

AFP 2023

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Learn how the LOtL threat landscape has evolved, why traditional endpoint hardening methods fall short, and how adaptive, user-aware approaches can reduce risk.

Watch Now

Join the summit to explore critical threats to public cloud infrastructure, APIs, and identity systems through discussions, case studies, and insights into emerging technologies like AI and LLMs.

Register

People on the Move

Robert Shaker II has joined application security firm ActiveState as Chief Product and Technology Officer.

MorganFranklin Cyber has promoted Nick Stallone and Ferdinand Hamada into newly created roles.

Jessica Newman has joined Sophos as General Manager of Global Cyber Insurance.

More People On The Move

Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.