Conti ransomware has struck again, this time affecting OmniTRAX, the Denver-based short line rail operator and logistics provider owned by the Broe Group. Shortly before Christmas is when the attack was suspected to have targeted the Broe Group, which decided not to pay the ransom demand. As a result, the threat actors leaked a portion of the stolen data. The preview of the data was around 70GB and included crucial internal OmniTRAX documents. While having their private company data shared publicly is potentially harmful to the company’s reputation, it looks like none of the company’s rail operations will be affected.
Note: this post was originally shared on https://squiblydoo.blog/ by a member of the Binary Defense Team. In