Security

Tesla Foiled Ransomware Attempt Includes FBI Involvement

The News: A recent Tesla foiled ransomware attempt included FBI involvement and led to an arrest. Elon Musk commented that the attempt was “serious,” as the ransomware attempt was at his car manufacturer’s massive factory near Reno, Nevada. More details at TechCrunch.

Analyst Take: The Gigafactory in Sparks, Nevada makes battery cells, packs and electric motors for Tesla, Elon Musk’s electric car line. The attempt was reportedly made via an outsider trying to bribe a company employee to make the attack internally.

An unnamed employee at the Gigafactory met with Russian national Egor Igorevich Kriuchkov, who offered to pay the employee up to $1 million dollars to install malware on Tesla’s network that would be used to ransom its data for millions of dollars. The employee informed Tesla, which then notified the Federal Bureau of Investigation. The FBI used the employee in a sting operation and Kriuchkov was arrested on August 22.

The malware was designed to install ransomware, a kind of malware that encrypts a victim’s files in exchange for a ransom. Prosecutors say the ransomware used is an increasingly popular new tactic that not only encrypts a victim’s files, but also exfiltrates the data to the hacker’s servers. The hackers typically threaten to publish the victim’s files if the ransom isn’t paid. This is similar to the REvil attack that occurred recently kind of hack that occurred recently at Jack Daniel’s parent company, Brown-Forman.

This attempted insider ransomware attack against such a prominent company shows just how bold ransomware cyber gangs are becoming. It also shows how much money they have to throw around if they are willing to bribe an employee with $1 million if it stands make them millions more. In his conversations with the FBI says Kriuchkov noted that the group he works has negotiated ransoms up to $6 million.

Though recruitment and bribery can be common in cyber-crime, it is rare in terms of ransomware, which is usually done remotely. The Tesla attack serves as a cautionary tale for CISOs and cyber security teams who spend so much time trying to thwart malicious attacks from the outside world — they equally need to be on the lookout for internal attacks. This means a shift in thinking and keeping track of anomalies in internal operations and any strange behavior demonstrated by employees that might be associated with a cyber threat, like trying to access data that they are usually not privy to. As offices will now be a blended environment, where employees will be coming and going throughout various days of the week, these precautions will be even more crucial.

Futurum Research provides industry research and analysis. These columns are for educational purposes only and should not be considered in any way investment advice.

Other insights from the Futurum team:

REvil Ransomware Breach Targets Jack Daniel’s Parent Brown-Forman — Steals 1 TB of Data

Garmin Cyber-attack Garners Up To $10 Million Ransom To Hackers

What the Massive Twitter Hack Means for CISOs and Security Vendors

Image Credit: Electrek

 

The original version of this article was first published on Futurum Research.

Sarah Wallace

Sarah brings 24 years of experience as an industry analyst to the Futurum team. She most recently served as the head of industry research for Oracle. Her experience working as a research director and analyst extends across multiple focus areas including AI, big data and analytics, cloud infrastructure and operations, OSS/BSS, customer experience, IoT, SDN/NFV, mobile enterprise, cable/MSO issues, and managed services. Sarah has also conducted primary research of the retail, banking, financial services, healthcare, higher ed, manufacturing, and insurance industries and her research has been cited by media such as Forbes, U.S. News & World Report, VentureBeat, ReCode, and various trade publications, such as eMarketer and The Financial Brand.

Share
Published by
Sarah Wallace

Recent Posts

Google Faces Renewed Net Neutrality Battle in Europe

In this guest contribution from Steve Vonder Haar, Senior Analyst with Wainhouse, a Futurum Group…

3 years ago

Poly Announces Poly API Marketplace Utilizing RapidAPI Designed to Provide an Assist to its Developer Community

In this guest contribution from Craig Durr, Senior Analyst with Wainhouse, a Futurum Group Company,…

3 years ago

Micron to Build $100 Billion Chip Factory in New York

Futurum's Daniel Newman dives into the recent announcement coming out of Micron, that they will…

3 years ago

The Amazon Devices and Services Event Did Not Disappoint: It’s Clear Amazon’s Focus is on Making Consumers’ Lives Better With its New Smart Home Devices

Futurum analyst Michael Diamond recaps the Amazon Devices and Services event and reviews some of…

3 years ago

Red Hat Announces Latest Version of OpenStack — Red Hat OpenStack Platform 17 — at MWC Las Vegas

Futurum senior analyst Steven Dickens provides his take on the latest announcements coming out of…

3 years ago

Micron Shows Resilience Across Q4 2022 and Full Year Fiscal 2022 Results

Futurum’s Ron Westfall and Daniel Newman examine Micron’s financial results for the fourth quarter 2022…

3 years ago