Russian hackers leak NRA files

A group of Russian cyber criminals have leaked what appears to be thirteen files belonging to America's National Rifle Association to the dark web. 

The group, identified as Grief, posted the files on their website on Wednesday and claim to have hacked the NRA. They have threatened to leak more files unless they are paid off, however an exact amount hasn’t been stated. Like many ransomware gangs they have dropped a few files and in an effort to spur a ransom payment.  

Whilst paying ransom to a hacker is a risk, the situation with Grief is a bit tricky. Cyber experts believe that the group is a rebranded effort by a group of Russian hackers who previously went by the pseudonym Evil Corp, who have been under sanctions by the U.S. Treasury Department since 2019 after allegedly stealing more than $100 million from banks and financial institutions in 40 countries.   

The NRA have not commented on the situation thus far however they have tweeted saying that they do not discuss matters pertaining to their physical or electronic security and that they take extra precautions  to protect the information of its members, donors, and operations. 

Ransomware attacks have risen in recent years with all manner of companies and organisations but rarely has a target been as politically sensitive as the NRA. The group has been afflicted by legal and financial troubles in recent years but remains a persistent political force and has over 5 million members.  

It is unusual for a politically active group such as the National Rifle Association to be victims of attack from ransomware gangs, but there is no evidence suggesting the attack was politically motivated. 

Russia and the U.S. already have strained relations this year in regards to a series of ransomware attacks against American targets by Russian linked cyber criminals. Research suggests that Russian intelligence services worked with ransomware gangs to compromise U.S. government and government-affiliated organisations.  

President Biden has issued a warning to President Putin to get him to crack down on ransomware hackers but several of Biden’s cyber security officials have stated that they have seen no evidence of anything being done to tackle the situation.