The notorious Everest ransomware group has allegedly attacked the US District Court and is currently selling its network access on its dark web portal for sale. The notification came directly from the threat actor’s account, which states that the US District Court’s network access was up “On Sale.”
The Everest ransomware group has consistently been in the cybersecurity news for its sophisticated attacks on high-profile targets, including government agencies, hospitals, and educational institutions.
The group uses a variety of tactics to gain access to their targets, including phishing emails and exploiting vulnerabilities in software systems.
US District Court’s network access sale puts US citizens at risk
The latest move by Everest, if confirmed, is particularly concerning because it directly targets the US District Court‘s network access and the US justice system, which upholds the rule of law and protects citizens’ rights.
If the group, as it claims, has the data and sells the US District Court’s network access, they could access confidential information and compromise ongoing investigations. The Cyber Express has contacted the US District Court regarding the security incident and is awaiting their response.
The US justice system is already under strain due to the COVID-19 pandemic, with many court proceedings moving online and sensitive information being shared electronically. The addition of a ransomware attack could cause significant disruptions and put a strain on an already overburdened system.
The Everest ransomware group has been attributed to many top cyberattacks in the past.
In January 2023, the Everest ransomware gang announced they possessed confidential system information from several aeronautics firms, including NASA. The group listed a price of $30,000 for anyone who wishes to acquire the leaked sensitive data from their online marketplace.
In October 2022, Everest ransomware group added AT&T to its victim list and was selling its access. The announcement was posted on their website on October 27th.
The news of the Everest ransomware group adding the US District Court’s network access for sale on their DarkWeb portal reminds them of the growing threat of cybercrime and the need for organizations to remain conscious in their cybersecurity efforts.