Townsquare Media Data Breach: ALPHV Ransomware Claims Hit


Townsquare Media, a renowned American radio network and media company, has fallen victim to a cyber attack claimed by the ALPHV ransomware group.

The hacker collective, known for its malicious activities since late 2021, has claimed the Townsquare Media data breach and added the company to its growing list of victims. 

The ALPHV ransomware group made their claim public, asserting that they have gained unauthorized access to a significant amount of data belonging to Townsquare Media.

According to their statement, the threat actors allegedly possess a staggering 251GB of the company’s data. This includes files sourced from the company’s servers and workstations, explicitly targeting those created within the past year.

The Cyber Express has reached out to the media company to learn more about the alleged Townsquare Media data breach. The company is yet to provide an official response.

Townsquare Media data breach: Explaining the intrusion

Townsquare Media data breach
Source: Twitter

The severity of the Townsquare Media data breach was further highlighted by including 19 attachments in the threat actor’s post.

Falcon Feed, a threat intelligence service, shared the post on Twitter, drawing attention to the alleged Townsquare Media data breach.

Two images included alongside the post showcased the threat actor’s claim of possessing the sizable data trove.

The ALPHV ransomware group has also issued an ultimatum and have demanded the company to establish contact within a week to resolve the alleged misunderstanding and prevent the public release of their data. 

The cyber attack on Townsquare Media is not the first time the media industry has fallen victim to such incidents.

In 2019, the company faced a similar cyber attack where it was reported that “crypto locker encryption malware” was used to take down the station operation. 

Townsquare Media data breach, cyber attacks, and investigations

The cyber attack comes at a time when the Townsquare Media has been under investigation by WeissLaw LLP for “possible breaches of fiduciary duty and violations of federal securities laws” by the company’s Board of Directors.

The legal inquiry adds a layer of complexity to the situation, potentially exacerbating the consequences for the media company.

The cyber attack’s impact on Townsquare Media is already evident in several affected markets. The crypto locker encryption malware attack from 2019 targeted various Townsquare Media clusters, including those in Shreveport, LA, Boise, Cedar Rapids, and Portsmouth, NH.

Townsquare Media’s Shreveport LA cluster experienced significant difficulties, with their operations suffering from the attack. Automation triggers and imaging systems were non-functional, while commercials were adversely affected.

Despite the challenges, some local shows managed to stay on-air by playing music from alternative sources like YouTube.

The incident draws parallels to a previous attack on Radio One’s stations late February, in which the internal systems of the stations were compromised, resulting in weeks of recovery efforts and the rebuilding of file systems.

Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. The Cyber Express assumes no liability for the accuracy or consequences of using this information.





Source link