Connect with us

Hi, what are you looking for?



Ransomware Gang Claims to Have Stolen Data From National Rifle Association

A cybercrime gang claims to have stolen data from U.S. gun rights advocacy group National Rifle Association (NRA).

A cybercrime gang claims to have stolen data from U.S. gun rights advocacy group National Rifle Association (NRA).

In response to the claims, the NRA said it “does not discuss matters relating to its physical or electronic security.” The organization noted that it “takes extraordinary measures to protect information regarding its members, donors, and operations – and is vigilant in doing so.”

The threat actor that claims to have breached NRA systems has been using the Grief ransomware to make a profit. In addition to encrypting victims’ files, the group has a Tor-based website where they threaten to leak stolen information if a ransom is not paid. In some cases the cybercriminals appear to have followed through with their threats.

The hackers have so far made public tens of files allegedly taken from the NRA, including financial reports, documents related to the NRA Foundation’s national grants, as well as House and Senate endorsement letters for the 2016 elections.

Grief ransomware operators target NRA

It’s unclear how much money the Grief ransomware operators hope to obtain from the NRA.

“Data leaks and extortion have become an increasingly common tactic among ransomware groups. With increasing awareness and an abundance of security and backup options to help companies recover their data after an attack, it makes sense that attackers would shift their methods as a response,” commented Jonathan Tanner, senior security researcher at Barracuda.

Tanner added, “This method can lead to customers’ data being exposed, confidentiality being broken, and even public embarrassment, either if the company may have wanted to handle it quietly or if leaked documents contain information of conversations or actions that were less than above board.”

Advertisement. Scroll to continue reading.

The Grief ransomware emerged in May 2021 and it’s said to be a rebranding of the ransomware known as DoppelPaymer. The hackers are believed to be operating out of Russia.

Related: Maryland Officials Warn Gun Dealers About Phishing Scams

Related: Roommate of Woman Accused of Hacking Pleads to Having Guns

Written By

Eduard Kovacs (@EduardKovacs) is a contributing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

SecurityWeek’s Threat Detection and Incident Response Summit brings together security practitioners from around the world to share war stories on breaches, APT attacks and threat intelligence.


Securityweek’s CISO Forum will address issues and challenges that are top of mind for today’s security leaders and what the future looks like as chief defenders of the enterprise.


Expert Insights

Related Content


The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.


Luxury retailer Neiman Marcus Group informed some customers last week that their online accounts had been breached by hackers.


As it evolves, web3 will contain and increase all the security issues of web2 – and perhaps add a few more.


A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...


Satellite TV giant Dish Network confirmed that a recent outage was the result of a cyberattack and admitted that data was stolen.


Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.

Artificial Intelligence

The release of OpenAI’s ChatGPT in late 2022 has demonstrated the potential of AI for both good and bad.

Artificial Intelligence

The degree of danger that may be introduced when adversaries start to use AI as an effective weapon of attack rather than a tool...