New extortion tactic from ransomware gangs? Utilizing calls to the front desk

The scenario described reflects the growing trend of ransomware gangs resorting to telephone contact as a means of pressuring companies to pay ransom demands. In this case, the hacker representing the ransomware gang DragonForce attempted to intimidate the victim company’s employees into compliance.

The recorded phone call, shared by the ransomware gang on its dark web site, reveals a failed attempt at extortion and intimidation. Instead of reaching the management team as intended, the hacker is directed to Beth from HR, who remains calm and composed throughout the conversation.

As the hacker tries to explain the alleged data breach, Beth questions the motive behind the attack, demonstrating a level-headed approach to the situation. The hacker’s frustration becomes evident as Beth persists in asking why the company was targeted.

Brett Callow, a threat analyst at Emsisoft, emphasizes the importance of considering telephone contact from threat actors in organizations’ response plans. Decisions regarding engagement with hackers should be made proactively to avoid making decisions under pressure.

Overall, the recorded phone call highlights the ineffectiveness of the hacker’s attempts to intimidate the company’s employees and underscores the need for companies to remain vigilant and prepared in the face of cyber threats.