{"id":42920,"date":"2023-11-13T14:17:17","date_gmt":"2023-11-13T19:17:17","guid":{"rendered":"https:\/\/www.itworldcanada.com?p=552617"},"modified":"2023-11-17T17:46:29","modified_gmt":"2023-11-17T22:46:29","slug":"breaking-news-moneris-says-no-critical-data-affected-in-ransomware-gangs-attack","status":"publish","type":"post","link":"https:\/\/technewsday.com\/staging\/breaking-news-moneris-says-no-critical-data-affected-in-ransomware-gangs-attack\/","title":{"rendered":"BREAKING NEWS: Moneris says no \u2018critical\u2019 data affected in ransomware gang\u2019s attack"},"content":{"rendered":"

The Medusa ransomware group has listed Canada\u2019s Moneris Solutions Corp., a partnership of two of the country\u2019s biggest banks which provides the point of sales IT network and terminals used by retailers across the country.<\/p>\n

This morning Brett Callow, a Canadian-based threat researcher for Emsisoft, tweeted the news on the X platform.<\/a> A screen shot of the gangs\u2019 blog says it is demanding $6 million for the deletion of stolen data, or the information will be publicly released in eight days.<\/p>\n

In a statement responding to a query from IT World Canada<\/em>, Darren Leroux, Moneris\u2019 director of communications, said that \u201cw<\/span>e can confirm that an attempt was made by an external party and our cybersecurity team prevented access to any critical data. Following the attempt, our team did a full audit and analysis of the incident, reviewed all information, and concluded none of our digital loss prevention policies were triggered.<\/p>\n

\u201cCybersecurity is a top Moneris priority, and we take the protection of our customers and their data seriously. We employ a dedicated team to manage and respond to cyber risks and their swift actions ensured Moneris and its customers were not impacted.\u201d<\/p>\n

Moneris was asked to clarify its statement that no \u201ccritical\u201d data was accessed by the attacker. The gang has posted what it says are screenshots of stolen Moneris data.<\/p>\n

Asked about the Moneris statement, Callow said it\u2019s possible Medusa got nothing, so listing Moneris is an attempt to \u201cshake down\u201d the company. \u201cThis wouldn\u2019t be the first time Medusa has listed a victim and never produced proof of the attack. That has happened before. They may simply hope that by listing an organization they may pay up, because it\u2019s not always easy to conclusively rule out the possibility that data was taken. Sometimes [threat] groups will try to leverage that to their advantage by claiming to have data they do not [have].\u201d<\/p>\n

Moneris is a joint venture between the Royal Bank and the Bank of Montreal. It says more than 325,000 retailers, tradespeople, and businesses are connected to the Moneris network for wired or wireless processing of credit and debit card or business-to-business transactions.<\/p>\n

The company also offers a full e-commerce solution for retailers based on the Wix platform<\/a>. That allows retailers to offer customers the ability to pay using a digital wallet or eGift cards.<\/p>\n

Among the Medusa gang\u2019s latest victims are the Philippine Health Insurance Corporation, which in September was asked to pay US$300,000<\/a> for decryption keys to unscramble compromised data and the deletion of stolen data; the Minneapolis Public School System, which in February was asked to pay US$1,000,000 to delete data the gang stole. In May that data \u2014 including students\u2019 psychological reports \u2014 was published<\/a>.<\/p>\n

Earlier this month, Medusa also claimed to have attacked the Canadian Psychological Association and is demanding $200,000 for the deletion of stolen data. IT World Canada <\/em>asked the CPA for comment on Nov. 5, but received no response.<\/p>\n

The Medusa gang is a separate group from those running the MedusaLocker ransomware operation.<\/p>\n

The post BREAKING NEWS: Moneris says no \u2018critical\u2019 data affected in ransomware gang\u2019s attack<\/a> first appeared on IT World Canada<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"

Moneris, which runs a payment card data network used by hundreds of thousands of Canadian businesses, says it prevented access to cri<\/p>\n","protected":false},"author":17,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[361,16],"tags":[392,393],"class_list":["post-42920","post","type-post","status-publish","format-standard","hentry","category-privacy","category-security","tag-ransomware","tag-security-strategies"],"acf":[],"_links":{"self":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts\/42920","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/users\/17"}],"replies":[{"embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/comments?post=42920"}],"version-history":[{"count":4,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts\/42920\/revisions"}],"predecessor-version":[{"id":42969,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts\/42920\/revisions\/42969"}],"wp:attachment":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/media?parent=42920"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/categories?post=42920"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/tags?post=42920"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}