U.S. Government Entity Paid Kairos $1 Million in Data-Theft Extortion Case

Summary

A U.S. government entity paid approximately $1 million to an entity named Kairos to prevent the leak of stolen data. Analysis suggests Kairos may not operate as a traditional ransomware group, as no evidence of data locking was found.

IFF Assessment

FOE

This case highlights successful extortion by a threat actor, demonstrating a payment made to prevent data exfiltration.

Defender Context

This incident underscores the persistent threat of data exfiltration and the complex nature of extortion tactics, which may not always involve traditional ransomware. Defenders should be aware of actors who extort payment simply for the promise of non-disclosure of stolen data.

Read Full Story →