Nuance Communications, Inc, the American multinational computer software technology corporation acquired by Microsoft in 2022, was targeted by cybercriminals.
The ransomware group Cl0p named Nuance in a cyber attack claim on their dark web portal. The Nuance cyber attack has not been confirmed and is yet to be addressed through an official statement by the AI-powered company.
The Cyber Express emailed Microsoft for comments about the alleged Nuance cyber attack. We will update this report based on their response.
Clop’s Victims: Nuance cyber attack, Boston Globe data breach
Clop ransomware group named seven renowned organizations to its victim list, according to a tweet by cybersecurity analyst Dominic Alvieri.
The other names posted along with the Microsoft Nuance cyber attack were as follows:
- Gesa credit union bank (United States) – https://www.gesa.com/
- Pan American Life Insurance Group (United States) – https://www.palig.com/
- China Citic Bank International (China) – https://www.cncbinternational.com/home/en/index.jsp
- The Boston Globe (United States) – https://www.bostonglobe.com/
- Arburg Machine Company (Germany) – https://www.arburg.com/en/
- IC System (United States) – https://www.icsystem.com/
All the named websites by Clop were working properly when assessed by The Cyber Express.
The hackers placed the links to the targeted websites along with download links to the files exfiltrated from the alleged Gesa cyber attack and others.
Five of the named organizations including Microsoft Nuance were from the United States, while others were from Germany and China.
Microsoft Nuance cyber attack and its acquisition
Microsoft acquired Nuance Communications for $19.7 billion in an attempt to strengthen its business outcomes in healthcare, retail, telecom, and financial services.
The AI-powered solutions with Nuance were aimed to improve self-service through automation and a digital contact centre among others.
Addressing the forthcoming innovation at Microsoft, Mark Benjamin, CEO of Nuance had said in a news release, “Combining the power of Nuance’s deep vertical expertise and proven business outcomes across healthcare, financial services, retail, telecommunications and other industries with Microsoft’s global cloud ecosystems will enable us to accelerate our innovation and deploy our solutions more quickly, more seamlessly and at greater scale to solve our customers’ most pressing challenges.”
Nuance was also in the news recently for the layoffs to increase productivity in the healthcare sector.
Employees were emailed by the CEO Mark about the layoffs which he called a difficult decision. The company expressed its need to be able to capitalize on future opportunities and make key investments in the business.
Nuance had nearly 7,000 employees when Microsoft planned to acquire Nuance in 2021. Having its inception in 1994, Nuance has notably excelled in the realm of image-processing and voice-recognition software innovation.
Clop ransomware group and MOVEit cyber attacks
The Cl0p ransomware group has been actively naming organizations on its leak site from the MOVEit vulnerability exploitation attacks.
The MOVEit cyber attack led to the data breach of several organizations from the healthcare, and education sectors among others.
The hackers claimed nearly 730 organizations as victims so far from the series of cyber attacks on the clients of MOVEit file transfer service. This allegedly led to the compromise of nearly 47,248,648 individuals, according to reports.
A massive number of 11 million individuals were recorded to be impacted by the Maximus cyber attack through MOVEit.
This was followed by 6 million individuals’ records being exposed due to the Louisiana Office of Motor Vehicles cyber attack.
The other named victims which led to millions of individual data breaches included the Colorado Department of Health Care Policy and Financing, the Oregon Department of Transportation, and the Teachers Insurance and Annuity Association of America.
Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. The Cyber Express assumes no liability for the accuracy or consequences of using this information.