 "Cognizant hit by 'Maze' ransomware attack amid coronavirus crisis")
Information technology services major Cognizant has said it has been hit by Maze ransomware, which has caused disruptions in operations for some its clients.
The Teaneck, New Jersey-based IT firm said it was in constant communication with its clients and has provided them with indicators of compromise.
“Cognizant can confirm that a security incident involving our internal systems, and causing service disruptions for some of our clients, is the result of a Maze ransomware attack,” the company said in a statement.
The firm’s security teams, supplemented by leading cyber defence firms, are taking steps to contain the incident, Cognizant said.
The anonymous hackers behind Maze have made headlines in recent months for publicly holding its victims hostage, threatening to leak company information if the target doesn’t pay its ransom.
In January, the US Federal Bureau of Investigation issued a warning to American companies about Maze’s tactic of threatening to release company information.
Though hackers linked to Maze have denied involvement in the attack on Cognizant, experts said it could have been the handiwork of some anonymous hackers.
“The reported Maze attack on Cognizant is worrisome, as it is not like typical ransomwares. Other than encrypting data, it is able to spread across a network, infecting and encrypting every computer on its path, and it can also exfiltrate the data to the attackers,” said Saket Modi, CEO of Lucideus, an enterprise cybersecurity platform company.
“Though Maze operators have denied the attack, it has still been categorised as Maze because the listed indicators of compromise included IP addresses of servers and file hashes, which are known to be used in previous attacks by Maze actors.”
At a time when more than 90 per cent of employees of IT services firms globally are working from home, such attack indicates a worrying trend. While there has been a significant rise in phishing attacks in the guise of Covid-19 themed websites, the ransomware attack seems to be the most severe form of such attempts at this point of time.
One subscription. Two world-class reads.
Already subscribed? Log in
Subscribe to read the full story →*Subscribe to Business Standard digital and get complimentary access to The New York Times
Smart Quarterly
₹900
3 Months
₹300/Month
SAVE 25%
Smart Essential
₹2,700
1 Year
₹225/Month
SAVE 46%
*Complimentary New York Times access for the 2nd year will be given after 12 months
Super Saver
₹3,900
2 Years
₹162/Month
Subscribe
Renews automatically, cancel anytime
Here’s what’s included in our digital subscription plans
Exclusive premium stories online
Over 30 premium stories daily, handpicked by our editors
Complimentary Access to The New York Times
News, Games, Cooking, Audio, Wirecutter & The Athletic
Business Standard Epaper
Digital replica of our daily newspaper — with options to read, save, and share
Curated Newsletters
Insights on markets, finance, politics, tech, and more delivered to your inbox
Market Analysis & Investment Insights
In-depth market analysis & insights with access to The Smart Investor
Archives
Repository of articles and publications dating back to 1997
Ad-free Reading
Uninterrupted reading experience with no advertisements
Seamless Access Across All Devices
Access Business Standard across devices — mobile, tablet, or PC, via web or app
SAVE 25%