DailyDarkWeb researchers recently detected the emergence of a new ransomware group dubbed SpaceBears. Some of the targets of SpaceBears include prominent organizations such as Thinkadam, Fliesenstudio am Rhein, Fifisystems, Surewerx USA, SM EMBALLAGE, Mr Bean, and CORTEX Chiropractic. These attacks pose potential dangers that could significantly disrupt the business continuity of the victims and lead to data loss.
There’s limited insight into the actual threat level posed by the group, and it’s unclear whether these incidents involve ransomware attacks or simply data breaches accompanied by ransom demands. The group also has a clearnet website hosted in Moscow, Russia, suggesting it may be a Russian-based ransomware group. Their websites give off a more ‘corporate’ appearance rather than the typical ransomware blogs.
Experts note that SpaceBears is a sophisticated ransomware that demands hefty amounts of ransom in exchange for the decryption key to unlock victims’ data. Such attacks often have serious financial implications for the victims and can also result in reputational damage and loss of customer trust.
- SouthAfrica – Thinkadam;
- Morocco – SM EMBALLAGE;
- Norway – Fire Fighting Systems (FFS);
- Germany – Fliesenstudio am Rhein;
- USA – Surewerx USA;
- Singapore – Mr Bean;
- USA – Cortex Chiropractic & Clinical Neuroscience.
