However, an anonymous source familiar with the incident told TechCrunch that Olympus is grappling with a ransomware attack that began on September 8, 2021.
Interestingly, the source shared details about the incident with TechCrunch prior to Olympus acknowledging the incident.
We’re looking at how our readers use VPNs with streaming sites like Netflix so we can improve our content and offer better advice. This survey won’t take more than 60 seconds of your time, and we’d hugely appreciate if you’d share your experiences with us.
“We are currently working to determine the extent of the issue and will continue to provide updates as new information becomes available. We apologize for any inconvenience this has caused,” read Olympus’ official statement.
A victim of BlackMatter?
In its statement put out on Saturday, 11 September, Olympus did acknowledge that it first detected “suspicious activity” on September 8. Once alerted, the company claims its specialized response team was quick to act, and is working with forensics experts to help resolve the issue.
“As part of the investigation, we have suspended data transfers in the affected systems and have informed the relevant external partners,” Olympus informs.
The anonymous source however shared with TechCrunch the ransomware note left behind by the Olympus attackers.
Decrypting the purported note, ransomware expert and threat analyst at Emsisoft, Brett Callow, believes the attack seems to be orchestrated by BlackMatter.
BlackMatter is a new ransomware-as-a-service (RaaS) threat actor, which the cybersecurity community claims to have risen from the ashes of the notorious DarkSide RaaS operator.
Olympus didn’t immediately respond to our email asking for confirmation whether it has indeed been the target of a BlackMatter campaign.