Internet correspondent, BBC World Service
Gety picturesInternet criminals told BBC News that their penetration against cooperative is much more dangerous than the previously recognized company.
BBC infiltrators have contacted that they had infiltrated information technology networks and stolen as customer and employee data.
After their approaching Friday, a cooperative spokesman said that the infiltrators “reached the data related to a large number of our current and former members.”
Co-OP had previously said that it had taken “proactive measures” for the motivation of the infiltrators and had a “small effect” only on its operations.
He also assured the public that “there is no evidence that the customer’s data has been at risk.”
Internet criminals claim that they have special information that includes 20 million people who registered in the cooperation planning plan, but the company will not confirm this number.
Criminal, who use Dragonforce, says they are also responsible for the ongoing attack on the M & S and trying to penetrate Harrods.
The unknown infiltrators showed that the BBC screenshots were in the first blackmail that they sent to CO-OP Cyber Security President in the interior Microsoft interior teams on April 25.
“Hello, we have clarified data from your company,” says chat.
“We have a customer database, and cooperation members card data.”
They also showed screenshots of a call with the head of the security that occurred about a week ago.
The infiltrators say they have sent the messages of other members of the Executive Committee as well as part of their plan to blackmail the company.
Co-OP has more than 2,500 supermarkets in addition to 800 funeral homes and an insurance company.
It hires about 70,000 employees throughout the country.
The company announced the cyber attack on Wednesday.
On Thursday, the cooperative staff who were urged to maintain their cameras during the team’s meetings, ordered not to register or copy calls, and verify that all participants were original cooperation employees.
The security scale now appears to be a direct result of the infiltrators who have access to chat and internal calls of the internal teams.
Dragonforce sharing databases with the BBC that includes user names and passwords for all employees.
They also sent a sample of 10,000 customer data, including cooperative membership cards, names, home addresses, email messages and phone numbers.
The BBC has destroyed the data he received, and does not publish or share these documents.
Dragonforce
It is believed that a high -value cooperative membership database is believed.
Since BBC called in cooperation on the evidence of the infiltrators, the company has revealed the full range of the violation of its employees and the stock market.
One of the speakers said: “These data include the personal data of the CO-IP group, such as names and contact details, and did not include member passwords, bank card details, credit card, transactions, or information related to any of the customer members or services with the cooperative group.”
Dragonforce wants to report the BBC to report the penetration – it appears to be trying to blackmail the company for money.
But criminals will not say what they plan to do with data if they do not receive their salaries.
They refused to talk about M & S or Harrods and when they were asked about their feeling of causing a lot of distress and damage to customers and clients, they refused to answer.
Dragonforce is a set of ransom programs known as victims’ data that are scrambling and asking a ransom that is paid for a cutting key. It is also known that it stole the data as part of the extortion tactics.
Dragonforce runs an electronic crime service so that anyone can use his malicious programs and location to carry out attacks and blackmail.
It is not known who is ultimately used as a Dragonforce service to attack retailers, but some security experts say the tactics that were seen are similar to those of a loose -coordinated group of infiltrators who have been called a scattered spider or Octo Tempest.
The gang is working on Telegram and Discord channels, and it speaks English and youth-in some cases only teenagers.
Cooperative infiltrators were held in the form of a text – but it is clear that the infiltrator, who called himself a speaker in his name, was fluent in English.
They say that two infiltrators want to be known as “Raymond Redington” and “Dim Zuma” after characters from the black American crime movie involved in a wanted criminal who helps the police to download other criminals in a “black list”.
“We are putting the UK retailers on the blacklist,” says infiltrators.
Co-OP says he works with NCSC and NCA and said in a statement that he is very sorry for this position has arisen.
