TeamHood Metropolitan Police Department data was leaked by Babuk Locker Ransomware holders. The Ransomware gang leaked the personal files belonging to Police officers of DC police.
The leaked documents data size is 150 MB from DC Officers personal file.
The Babuk Locker Gang said “The negotiations reached a dead end, the amount we were offered does not suit us, we are posting 20 more personal files on officers, you can download this archive, the password will be released tomorrow”.
The ransomware gang claims that the data was leaked because the negotiations with DC police was stalled as DC police is not willing to pay the demands asked by Babuk Ransomware.
Babuk Locker added that all the data would be leaked if the DC Police is unwilling to match their demands. “If during tomorrow they do not raise the price, we will release all the data,” the ransomware operators said.
This is yet to be verified the DC Police are willing to pay the ransom demanded by Babuk.
DC Police confirms the Ransomware Incident
In April MCP police department confirmed that they are targeted by the Ransomware attack and 250 GB worth of data is stolen.
At the time, the ransomware gang also posted screenshots of folders containing data allegedly stole during the breach.
The folders’ names point to internal files related to police operations, investigation reports, disciplinary records, as well as files related to gang members and ‘crews’ operating in DC.
After disclosing their attack on DC Police’s network, Babuk Locker operators posted and deleted two announcements about plans to shut down operations and open-source the ransomware. The ransomware gang said that they would instead close their affiliate program and move to an extortion-only model which does not rely on encrypting victims’ systems after stealing sensitive data.
Babuk Locker started its operation in January, They also began leaking data stolen from their targets on hacker forums and data leak portal.
Since then, the ransomware gang has slowly expanded its operations as they recruited more affiliates to compromise even more enterprise networks.
As per the US NSA guidelines Ransom should not be paid to the ransomware groups.
