Asia Assistance, a subsidiary of multinational insurance company AXA, has been infected by the Avaddon ransomware at multiple branch locations in Hong Kong, Malaysia, the Philippines, and Thailand. Avaddon claims on their website to have stolen 3 TB of data and began a Distributed Denial of Service (DDoS) against multiple AXA-owned websites until the company reaches out to begin ransom payment negotiations. Stolen data includes bank statements, claims, medical and payment records and more, according to the ransomware group. The group behind Avaddon gave AXA 10 days to cooperate and threatened to release more stolen documents if negotiations have not occurred.
Written by: Nataliia Zdrok, Threat Intelligence Analyst at Binary Defense Russia’s invasion of Ukraine increased