BlackCat Ransomware Strikes Ho Chi Minh City Power Corporation

The BlackCat ransomware group has reportedly targeted Ho Chi Minh City Energy Company, a subsidiary of Vietnam Electricity. The alleged EVNHCMC data breach has raised concerns, prompting the hacker group ALPHV to threaten to report the incident to the Vietnam Department of Energy. The situation is unfolding, with 84 samples from the Vietnam Electricity data breach posted on the dark web.

Vietnam Electricity, also known as EVN, holds a significant position as the largest power company in Vietnam. Established in 1994 as a government-owned entity, EVN has operated as a one-member limited liability company since 2010. 

With its extensive infrastructure, EVN manages large-scale hydropower and coal-fired power plants, contributing 58% to the national power generation system. Additionally, EVN oversees power generation and transmission corporations, as well as regional power distribution corporations.

The Vietnam Electricity data breach explained

Vietnam Electricity data breach
Source: Twitter

The Cyber Express has reached out to Ho Chi Minh City Energy Company for further insights into the cyberattack on Vietnam Electricity, however, an official response is awaited.

The severity of the situation is underscored by the threat actor’s intention to report the incident to the Vietnam Department of Energy. Despite the gravity of the claims, Vietnam Electricity’s website remains operational, showing no immediate signs of the alleged cyber attack.

This isn’t the first time the BlackCat ransomware group has made headlines. Previously, The Cyber Express reported on their involvement in the QSI Banking Cyberattack, where 5TB of SQL data was allegedly stolen. Although the QSI Banking incident was not officially confirmed by the firm, cybersecurity researchers noted it based on dark web announcements.

The attack spree by ALPHV/BlackCat ransomware group

Adding to the complexity of the situation, the ALPHV/BlackCat ransomware group has announced plans to target social media platforms, specifically mentioning potential blackmail attempts on Roblox and Twitch. The ominous forecast suggests that another platform, X (previously Twitter), could be the next victim in this hacking spree.

The recent series of attacks, including the Tipalti data breach, has been linked to the BlackCat ransomware group. Returning to the ongoing story of the Vietnam Electricity data breach, The Cyber Express is closely monitoring the situation. Updates will be provided as more information becomes available or an official confirmation is released by the organization regarding the alleged EVNHCMC data breach. 

Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. The Cyber Express assumes no liability for the accuracy or consequences of using this information.