Five Families Strike Again, Targeting Key UAE Entities


A threat actor group Stormous Ransomware, affiliated with the Five Families alliance, has claimed responsibility for alleged cyberattacks targeting several prominent UAE entities.

The list allegedly includes Bayanat, the sovereign wealth fund’s analytics and geospatial intelligence arm; Kids.ae, the government’s digital platform for children; the Telecommunications and Digital Regulatory Authority (TDRA); the Federal Authority for Nuclear Regulation (FANR); and the Sharik citizen portal.

Five Families Alliance
Source: X

While Stormous hasn’t disclosed details about the nature of the attacks, the data types or size potentially compromised, they’ve left a message with a link to their blog on the Tor network, urging targets to “stay informed” and offering “more information.

These alleged cyberattacks on UAE entities have heightened anxieties as they suggest potential data leaks if ransom demands aren’t met.

Stormous RansomwareStormous Ransomware
Source: X

Five Families Cyberattack Claims

This incident comes on the heels of a much larger cyberattack claim by the Five Families earlier, where they targeted a vast number of UAE entities across various sectors. Governmental and private entities like the Roads and Transport Authority (RTA), the Ministry of Cabinet Affairs, and several ministries were reportedly compromised.

In that alleged cyberattack claim, the group demanded a 150 BTC ransom (approximately $6.7 million USD at today’s exchange rate) threatening to leak stolen data if the demands weren’t met.

Cybetattack on UAECybetattack on UAE
Source: X

Uncertainties and Potential Implications

The true motives behind these cyberattacks remain unclear. It’s possible they’re aiming for a significant financial payout, or they may seek to disrupt UAE government operations or damage the country’s reputation for digital security. The targeted entities haven’t yet released any official statements, leaving the situation shrouded in uncertainty.

If the claims of compromised data are true, this could be the biggest data breach ever witnessed in the UAE and potentially the entire Middle East. The leak of sensitive government or citizen data could have severe consequences, ranging from financial losses to identity theft and national security risks.

Heightened Cybersecurity Measures a Must

This incident highlights the critical need for enhanced cybersecurity measures across all UAE entities, both public and private. Investing in advanced security solutions, implementing stricter data protection protocols, and regularly educating employees on cyber threats are all essential steps to prevent future attacks.

Cybercrime transcends borders. International cooperation between governments and law enforcement agencies is vital to track down these cybercriminals and hold them accountable. Collaborative efforts are crucial for developing effective strategies to combat cyber threats and protect critical infrastructure across the globe.

The coming days will be crucial in understanding the true extent of these alleged cyberattacks on UAE claims and the UAE government’s response. While the situation is concerning, a prompt and coordinated effort can help mitigate the damage and enhance the country’s digital defenses.

Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. The Cyber Express assumes no liability for the accuracy or consequences of using this information.



Source link