Coca-Cola investigating potential large-scale data breach

A new threat actor claims to have stolen gigabytes of data

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

Coca-Cola has confirmed said it is investigating a possibledata lossincident, after a Russia-based threat actor started selling data allegedly belonging to the company.

As reported byThe Register, a relatively new threat actor called Stormous listed 161GB of Coca-Cola data on the dark web, for sale to the highest bidder. The group claims to have lifted the data from “some of the company’sservers”.

“We are aware of this matter and are investigating to determine the validity of the claim,” Coca-Cola told the publication. “We are coordinating with law enforcement.”

Thedatabaseis on offer for $64,000, or the next best offer, depending on the amount of data the buyer wants.

Share your thoughts on Cybersecurity and get a free copy of the Hacker’s Manual 2022. Help us find how businesses are preparing for the post-Covid world and the implications of these activities on their cybersecurity plans. Enter your email at theend of this surveyto get the bookazine, worth $10.99/£10.99.

Potential Coca-Cola breach

The name Stormous first started popping up in early 2022, and then in early March, when the group was linked with a data breach atEpic Games. Allegedly, the group discovered avulnerabilityin the company’s internal network and used it to steal almost 200GB of data, including data on 33 million users.

At the time, the group said it would leak information about Epic Games’ employees, but not users. However, as the data never saw the light of day, some cybersecurity experts were speculating that the entire thing was a hoax.

Conti ransomware group has internal chats leaked after siding with Russia>Leaked Conti ransomware used to attack Russian targets>Conti ransomware source code leaked by Ukrainian researcher

The group has publicly declared its support for Russia’s invasion of Ukraine, stating in a Telegram thread that it will not stand by and watch various threat actors go after Russian organizations and infrastructure.

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

“And if any party in different parts of the world decides to organize a cyber-attack or cyber-attacks against Russia, we will be in the right direction and will make all our efforts to abandon the supplication of the West, especially the infrastructure,” the group wrote, in Arabic.

ViaThe Register

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

Rising AI threats are making firms turn back to human intelligence

Thousands of employees could be falling victim to obvious phishing scams every month

Google’s new AI video maker for businesses is now available on Workspace