{"id":7159,"date":"2022-07-27T15:49:19","date_gmt":"2022-07-27T06:49:19","guid":{"rendered":"https:\/\/cyberenso.jp\/?p=7159"},"modified":"2022-08-19T15:50:56","modified_gmt":"2022-08-19T06:50:56","slug":"lockbit-make-wrong-claim-about-an-attack-on-the-italian-revenue-agency","status":"publish","type":"post","link":"https:\/\/cyberenso.jp\/en\/lockbit-make-wrong-claim-about-an-attack-on-the-italian-revenue-agency\/","title":{"rendered":"LockBit make wrong claim about an attack on the Italian Revenue Agency"},"content":{"rendered":"\t\t<div data-elementor-type=\"wp-post\" data-elementor-id=\"7159\" class=\"elementor elementor-7159\" data-elementor-post-type=\"post\">\n\t\t\t\t\t\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-d9b0ef7 elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"d9b0ef7\" data-element_type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-fa71aa4\" data-id=\"fa71aa4\" data-element_type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t\t\t<div class=\"elementor-element elementor-element-ad783d1 elementor-widget elementor-widget-text-editor\" data-id=\"ad783d1\" data-element_type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<p>After LockBit\u2019s claim of attacking the Italian Revenue Agency on the 25th, an investigation done by the Red Hot Cyber (RHC) open-news project has revealed that the stolen data is from another Italian organisation, GESIS Srl. The investigation discovered that the threat actor who stole the data was an affiliate and when asked if they were sure that the data was from the Italian Revenue Agency, LockBit responded by saying they needed time to verify it as it was from an affiliate. RHC then discovered a\u00a0 connection between the Revenue Agency and Studio Teruzzi during an analysis of the Studio Teruzzi post on the LV ransomware data leak. Both posts seemed to have a connection to GESIS Srl.<\/p><p>This connection was later confirmed on Monday 25th of July 2022 by GESIS Srl when they released a press release stating the data published on the LockBit data leak site under the Italian Revenue Agency posting was from one of their servers that had been a subject of a recent cyber-attack attempt that was aimed at encrypting their files and data exfiltration, with a relative ransom note.<\/p>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"<p>After LockBit\u2019s claim of attacking the Italian Revenue Agency on the 25th, an investigation done by the Red Hot Cyber (RHC) open-news project has revealed that the stolen data is from another Italian organisation, GESIS Srl. The investigation discovered that the threat actor who stole the data was an affiliate and when asked if they were sure that the data<span class=\"excerpt-hellip\"> [\u2026]<\/span><\/p>\n","protected":false},"author":1,"featured_media":7164,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6,10,12,9,2,1],"tags":[],"class_list":["post-7159","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-latest_news","category-latest_vulnerabilities","category-read_article","category-ransomware_criminals","category-ce_news","category-uncategorized"],"acf":[],"jetpack_featured_media_url":"https:\/\/i0.wp.com\/cyberenso.jp\/wp-content\/uploads\/2022\/08\/13.jpg?fit=1377%2C926&ssl=1","_links":{"self":[{"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/posts\/7159"}],"collection":[{"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/comments?post=7159"}],"version-history":[{"count":6,"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/posts\/7159\/revisions"}],"predecessor-version":[{"id":7167,"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/posts\/7159\/revisions\/7167"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/media\/7164"}],"wp:attachment":[{"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/media?parent=7159"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/categories?post=7159"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cyberenso.jp\/en\/wp-json\/wp\/v2\/tags?post=7159"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}