Months after cyber-attacking Reddit, the BlackCat ransomware is threatening the social media company to leak its stolen data โ after failing the ransom talks.
As per its data leak site, the BlackCat group claims to have ignored its $4.5 million ransom demand from Reddit, combined with the recent API pricing changes that triggered them to leak the stolen data from an earlier breach. Reddit has not commented on this yet but confirmed the earlier breach.
Breaching and Leaking Reddit Data
In February this year, one of the Reddit employees was targeted in a carefully crafted phishing campaign that resulted in stealing his company credentials and accessing the sensitive data of Reddit.
Though Reddit confirmed the breach and explained how itโs taking care of the platform later on, it didnโt disclose the perpetrator behind this attack. Well, now, ALPHV ransomware (popularly known as BlackCat) claims the act and threatens to leak the stolen data from the hack.
As posted on their data leak site, the BlackCat ransomware gang claims to have 80GB of Redditโs data, andย will leak soon if the social media company doesnโt reverse its API pricing policies or pay the demanded ransom.
The group claimed to have contacted Reddit twice with a ransom demand of $4.5 million but didnโt receive any response. And for API pricing, Reddit has decided to change its API access to third-party apps, which many groups protest.
While theyโre facing the heat, the BlackCat group is preparing to leak a bulk of Redditโs data โ which includes internal documents, source code, employee data, and limited data about the companyโs advertisers. Reddit has earlier stated that none of their production systems was hit in the breach, and thereโs no evidence for the leak of user passwords, accounts, or credit card information.