The DragonForce ransomware group has added two new alleged victims to its dark web leak site, targeting organizations in the telecommunications and energy sectors. The latest list of alleged victims posted by the group includes:
-
Mobilelink USA (πΊπΈ): A major private retailer for Cricket Wireless based in Sugar Land, Texas. The company operates over 550 retail locations across the United States, providing 5G LTE services and devices.
-
Capital Star Oil & Gas Inc. (πΊπΈ): An independent oil and gas company based in Houston, Texas. Established in 2002, the firm focuses on drilling activities financed through private placement investments.
According to the leak site, Mobilelink USA is currently subject to a countdown timer, with the group threatening to publish the data in approximately 7 days. Conversely, the entry for Capital Star Oil & Gas indicates that files have already been published and are available for download.
The DragonForce group claims to have exfiltrated a massive volume of data from both organizations. According to the actor, the compromised data includes:
-
Mobilelink USA: 5.04 TB of data.
-
Capital Star Oil & Gas Inc.: 43.52 GB of data.
