Exclusive: Herron Todd White says new ransomware claim involves same data set
For the second time this year, malicious actors have claimed responsibility for a cyberattack on Australian property valuation company Herron Todd White.
On April 27, the BlackSuit ransomware gang claimed the Australian scalp, publishing details of the exfiltrated data on its darknet leak site.
“279g data – just paperwork, no waste,” a gang spokesperson said.
“20g sql_DB – customer and transaction databases.”
Now, the Meow Leaks ransomware gang has listed the Australian company on its site.
The threat group did not provide any details about the incident or the stolen data, but set prices for purchasing the data.
However, speaking to Cyber Daily, Herron Todd White said that the new incident appears to be a case of data duplication.
“We are aware of a claim made online by an unauthorized third party regarding our business,” Herron Todd White told Cyber Daily.
“We have ongoing cybersecurity monitoring in place and our investigation has not provided any evidence that an unauthorized third party accessed our systems, and this does not represent a new incident or compromise of our systems.
“Based on the nature of the claim and the data involved, the advice we have received from our external cybersecurity experts is that this is the same data set that was the subject of a cyber incident occurred in April 2024. At the time, we informed the regulator, the persons concerned and our customers, in accordance with our obligations.
“We are communicating with our staff, customers and stakeholders and will continue to maintain a proactive approach to monitoring and security with the assistance of external experts. If there is a reason to communicate further, we will notify all of our stakeholders as quickly as possible. »
Cyber Daily will provide an update on this story as it develops.