U.S. Government Entity Paid Kairos $1 Million in Data-Theft Extortion Case
Summary
A U.S. government entity paid approximately $1 million to an entity named Kairos to prevent the leak of stolen data. Analysis suggests Kairos may not operate as a traditional ransomware group, as no evidence of data locking was found.
IFF Assessment
FOE
This case highlights successful extortion by a threat actor, demonstrating a payment made to prevent data exfiltration.
Defender Context
This incident underscores the persistent threat of data exfiltration and the complex nature of extortion tactics, which may not always involve traditional ransomware. Defenders should be aware of actors who extort payment simply for the promise of non-disclosure of stolen data.