Gorilla Glue finds itself in sticky situation after hackers steal data

Not the first time The Dark Overlord has proposed a “handsome business proposition”…

Gorilla glue

A hacker group has stolen a variety of corporate and personal information from the United States glue and adhesive company Gorilla Glue.

The group, which calls itself The Dark Overlord, claims to have made off with 500 GB of company data including R&D materials and access to personal email accounts of those who work at Gorilla Glue.

To prove it, the hackers sent 200 GB worth of files to Motherboard. The cache appears to contain financial documents, invoices, and presentations.

1479408704269748

A screenshot of an internal presentation the hackers obtained with content redacted. (Source: Motherboard)

Also included in the haul were personal photos apparently of Gorilla Glue's executives and their family members.

Motherboard has attempted to verify those documents with Gorilla Glue and other companies implicated in the documents, but it has yet to hear a response. Meanwhile, the photos didn't yield any hits when entered into a reverse image search engine.

Unsurprisingly, The Dark Overlord is quite pleased with its handiwork. One of its members intimated as much to Motherboard in a recent online chat:

"We have everything they ever created."

Nothing like a smug criminal to get your blood boiling.

Beyond aggravating, that cheekiness isn't a good sign. It signals that the hacker group feels in control, that everything is going their way.

But where exactly does this hack go from here?

For one possible answer, ask WestPark Capital, a Los Angeles-based investment bank which a suffered a security incident at the hands of The Dark Overlord in September.

The extortionists ultimately decided to publish sensitive documents after the bank refused to agree to its "handsome business proposal."

Westpark capital

Uh-oh. Given what The Dark Overlord said about its most recent hack, that doesn't bode well for Gorilla Glue. As quoted by Motherboard:

"We approached them with a handsome business proposition. However, there has been a moderate dispute."

If the hacker group plans to extort Gorilla Glue, and if the information in the Dark Overlord's possession is legitimate, there's very little the company can do. They could do nothing and accept the fact that their reputation will probably suffer some damage in the aftermath of several data dumps. Or they could pay the ransom and signal their willingness to pay up for the return of their data, a tendency which other criminals could exploit in the future.

It's a lose-lose situation, which is why companies need to use the incidents at Gorilla Glue and WestPark Capital as a motivation to boost their own defenses.

In particular, organizations should implement layered defenses that place sensitive data out of the reach of criminals like The Dark Overlord. They should also review their security policies when it comes to patching for vulnerabilities, and they should think about training their employees to watch out for phishing scams and other attacks.

Tags: , , ,

Smashing Security podcast
Check out "Smashing Security", the new weekly audio podcast, with Graham Cluley, Carole Theriault, and special guests from the world of information security.

"Three people having fun in an industry often focused on bad news" • "It's brilliant!" • "The Top Gear of computer security"

Latest episode:

, , ,

4 Responses

  1. furriephillips

    November 21, 2016 at 10:45 am #

    I'd be interested in your take on how best to prevent data exfiltration. It's obvious that the attackers have gained access to the data, but if there were measures in place, to prevent or at least hamper the exfiltration of the 500GB of data, the situation may be somewhat diffrerent.

    • Bill Hayden in reply to furriephillips.

      November 21, 2016 at 9:39 pm #

      Something like https://canary.tools/

  2. m@Xd

    November 30, 2016 at 9:56 am #

    Dark Overlord, heed the hackers final warning, mess with the banks all you like but if I cannot seal my tubeless tires with the super-awesome "gorilla tape" because of your activities then your days are numbered.

    • Terribyte in reply to m@Xd.

      December 1, 2016 at 3:07 am #

      He lost any credibility he may have had when he chose to hack a tired meme.

Leave a Reply