Pay2Key ransomware operators continue to attack Israeli organizations.
Cybercriminal group Pay2Key, affiliated with the Iranian government, announced the hacking of the computer systems of the Israeli information security company Portnox a day after the Israel Aerospace Industries hack was reported.
The attackers have published documents related to Portnox customers, including major Israeli companies such as Bezeq, Elbit, El Al and Clalit, Ynet writes. According to Pay2Key, they have stolen almost 1 TB of data, but have published only 3 GB so far.
Among others, the attackers published a 15-page 2018 Portnox report describing vulnerabilities in the systems of Israel's largest defense company Elbit. However, according to Walla, the information presented in the report is most likely out of date and out of date.
The Israeli information security company Check Point warned Israeli organizations about the attacks of the Pay2Key group in November this year. According to experts, hackers install ransomware on the networks of their victims, gain control over data and systems, and demand a ransom, threatening to publish corporate data.
According to a report by information security company ClearSky, Pay2Key is a branch of the Iranian hacker organization Fox Kitten.
“We estimate that this campaign is part of an ongoing confrontation in cyberspace between Israel and Iran, with the latest wave of attacks damaging some of the affected companies,” the experts said.