Netfilim Ransomware Operators Strike W&T Offshore, a Leading Independent Oil and Natural Gas Producer

Netfilim ransomware operators recently leaked the data of W&T Offshore Inc.

W&T Offshore has been an independent oil and natural gas producer active in the acquisition, exploration, and development of properties in the Gulf of Mexico since 1983. For the past 36 + years, we have successfully discovered and produced properties on the conventional shelf and in the deepwater across the Gulf of Mexico thanks to the significant technical expertise of our Founder and CEO, Tracy Krohn, and the team he has assembled. They began trading on the NYSE under ticker symbol “WTI” in 2005 and our headquarters is in Houston, Texas.

Based on the information leaked, it appears that the negotiation between the ransomware operators and W&T Offshore failed, which made them leak the data. The ransomware operators claim to have over 800GB of company’s data, but as per now they just leaked around 10 GB of it. This small data leak from the large lot seems to be a warning for the company to accept the terms of the ransomware operators.

Below is the message been posted by Netfilim Ransomware Operators-:

Snapshot of Message being posted by Nefilim ransomware operators

The Cyble Research Team has verified the data leak of around 10GB. The data leak includes the sensitive financial reporting documents of the company such as bank reconciliation statements, journal entries, company’s risk analytics model, long-term debt reports, and many more. Below is the snapshot of the few files from the directory listing being leaked by the Netfilim ransomware operators.

Snapshot of directory listing being leaked by Netfilim Ransomware Operators

About Cyble:

Cyble Inc.’s mission is to provide organizations with a real-time view of their supply chain cyber threats and risks. Their SaaS-based solution powered by machine learning and human analysis provides organizations’ insights to cyber threats introduced by suppliers and enables them to respond to them faster and more efficiently.

Cyble strives to be a reliable partner/facilitator to its clients allowing them with unprecedented security scoring of suppliers through cyber intelligence sourced from open and closed channels such as OSINT, the dark web and deep web monitoring and passive scanning of internet presence. Furthermore, the intelligence clubbed with machine learning capabilities fused with human analysis also allows clients to gain real-time cyber threat intel and help build better and stronger resilience to cyber breaches and hacks. Due to the nature of the collected data, the company also offer threat intelligence capabilities out-of-box to their subscribers.

This Post has Been Exported From Our Medium Channel