Jack Daniel's company hacked

[Yogee]

https://www.bleepingcomputer.com/news/security/us-spirits-and-wine-giant-hit-by-cyberattack-1tb-of-data-stolen/

As confirmed by Brown-Forman spokesperson,

Unfortunately, we believe some information, including employee data, was impacted. We are working closely with law enforcement, as well as world-class third-party data security experts, to mitigate and resolve this situation as soon as possible,

The hackers, REvil, claims they were able to steal 1TB of data that includes confidential information about employees, company agreements, contracts, financial statements, and internal correspondence. They also posted screenshots as proofs.

Directory trees


Database backup entries as recent as July 2020


What do you guys think?

Assuming authorities won't be able to catch the perpetrators in time, will the company concede to the hacker's demand and pay a huge amount? No active negotiation yet as mentioned in the article.

REvil: We still believe in the prudence of BROWN-FORMAN and are waiting for them to continue their discussion of a way out of this situation
Brown_Forman: Protecting the privacy and security of personal information is extremely important to us. The Company deeply regrets any inconvenience or concern this may cause. Keeping information secure is a priority for Brown-Forman. We know this news comes at an already challenging time and may be disconcerting given the uncertainty of the situation.

[Charles-Tim]

The company's name is Brown-Forman, but they produce whiskey and scotch brands like Jack Daniel's, Woodford, Old Forester, Collingwood, Glenglassaugh, and Glendronach; Herradura, El Jimador, and Pepe Lopez tequila; Finlandia vodka, and Sonoma-Cutrer wines.

REvil is the attacker (hacker)
https://www.bleepingcomputer.com/news/security/us-spirits-and-wine-giant-hit-by-cyberattack-1tb-of-data-stolen/
REvil is now beating the drum about this data trove hoping that they would force a payment or get a higher price in an auction. They say that it contains details about the company's corporate clients and could be useful for investors and competition.

But, the mission of REvil did not fulfill
https://www.bleepingcomputer.com/news/security/us-spirits-and-wine-giant-hit-by-cyberattack-1tb-of-data-stolen/
Although the final step in a ransomware attack is to encrypt data, REvil did not get to deploy this routine. Brown-Forman detected the attack and stopped it before data was locked, a company representative told BleepingComputer.
Very possible the data leak could results to another form of attack, especially on Brown-Forman clients.

But imo, Brown-Forman is a spirit and wine company, the mission of the hacker (REvil) will be to implant ransomware in order to hijack Brown-Forman data base system. They failed, I think what the hackers are implying will be fake as they were unable to encrypt Brown-Forman data for hijacking purposes.

[aesma]

Yeah, frankly I don't see their data as being that valuable.

My company was hacked that way earlier in the year (just before the COVID) and the hackers did manage to encrypt some data on top of stealing some, before we shut everything down. My company didn't pay, even though it meant having to rebuild some stuff and some loss of data.

Would our competitors be interested in the data, probably, but would it be worth it if a leak would reveal they had bought the data, with lawsuits ensuing, probably not.