In a recent announcement, the notorious Blackout Ransomware Group has claimed responsibility for a significant cyberattack on MCM Telecom, a B2B telecommunications provider based in Mexico. The group asserts that they have encrypted MCM Telecom’s servers and deleted their backups, effectively crippling the company’s digital infrastructure.
According to the group’s statement, they gained access to the main database of MCM Telecom, which contains comprehensive information about the company’s clients. This includes sensitive data such as customer IDs, names, phone numbers, email addresses, physical addresses, and potentially even data necessary for connecting to GSM and VoIP systems. Additionally, the attackers have exfiltrated the source codes of MCM Telecom’s main platforms, describing them as poorly constructed and implying that others could exploit these flaws further.
Despite the severity of the breach, the Blackout Ransomware Group claims that MCM Telecom’s management has shown no willingness to negotiate or take action to secure the compromised data. As a result, the group has threatened to make a substantial amount of the stolen data publicly available.
Leaked Data Details
- Data Size: Approximately 15 GB
- Uploaded: 25 May 2024, 11:35:44 UTC
- Customer Information: ID, name, number, key, status, category code, class code, type, primary sales representative ID, SIC code, tax reference, tax code.
- Business Details: FOB point, shipping method, GSA indicator, partial shipment status, taxpayer ID, price list ID, freight terms, order type ID, sales channel code, warehouse ID.
- Additional Information: Mission statement, number of employees, potential revenue for the current and next fiscal years, fiscal year-end month.
